8 matches found
Oracle Fusion - Directory Traversal/Local File Inclusion
Oracle Business Intelligence Enterprise Edition 5.5.0.0.0, 12.2.1.3.0, and 12.2.1.4.0 are vulnerable to local file inclusion vulnerabilities via "getPreviewImage." id: CVE-2020-14864 info: name: Oracle Fusion - Directory Traversal/Local File Inclusion author: Ivo Palazzolo @palaziv severity: high...
CVE-2020-14864
creationtimestamp| type| source ---|---|--- 2023-06-14 21:10:04+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-05 10:20:42+00:00| seen| https://t.me/arpsyndicate/1453 2024-12-24 20:25:59+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971214 2025-02-23 02:10:26+00:00|...
Oracle Business Intelligence Enterprise Edition Information Disclosure (CVE-2020-14864)
An information disclosure vulnerability exists in Oracle Business Intelligence Enterprise Edition. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Oracle Business Intelligence Enterprise Edition 5.5.0.0.0 / 12.2.1.3.0 / 12.2.1.4.0 LFI
Exploit Title: Oracle Business Intelligence Enterprise Edition 5.5.0.0.0 / 12.2.1.3.0 / 12.2.1.4.0 - 'getPreviewImage' Directory Traversal/Local File Inclusion Date: 2020-10-27 Exploit Author: Ivo Palazzolo @palaziv Reference: https://www.oracle.com/security-alerts/cpuoct2020.html Vendor Homepage...
CVE-2020-14864
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware component: Installation. Supported versions that are affected are 5.5.0.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...
CVE-2020-14864
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware component: Installation. Supported versions that are affected are 5.5.0.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...
CVE-2020-14864
CVE-2020-14864 affects Oracle BI Enterprise Edition (OBIEE) under the Fusion Middleware Installation component. A Directory Traversal/Local File Inclusion in the getPreviewImage function lets an authenticated attacker with access to the admin interface read arbitrary system files via the previewF...
CVE-2020-14864
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware component: Installation. Supported versions that are affected are 5.5.0.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via...