Lucene search
PRIOn knowledge basePRION:CVE-2023-21959HistoryApr 18, 2023 - 8:15 p.m.
Design/Logic Flaw
2023-04-1820:15:00
PRIOn knowledge base
www.prio-n.com
3
oracle ireceivables
e-business suite
attachments
vulnerability
network access
http
confidentiality impact
cvss 3.1
Vulnerability in the Oracle iReceivables product of Oracle E-Business Suite (component: Attachments). Supported versions that are affected are 12.2.3-12.2.12. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle iReceivables. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle iReceivables accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).
| CPE | Name | Operator | Version |
|---|---|---|---|
| ireceivables | ge | 12.2.3 | |
| ireceivables | le | 12.2.12 |
Related
cve
cve
CVE-2023-21959
2023-04-18 20:15:15
nvd
nvd
CVE-2023-21959
2023-04-18 20:15:15
cvelist
cvelist
CVE-2023-21959
2023-04-18 19:54:31
nessus
nessus
Oracle E-Business Suite (Apr 2023 CPU)
2023-04-20 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00