234 matches found
Oracle Patch Tuesday April 2023 Security Update Review
Oracle has released the second quarterly edition of Critical Patch Update, which contains a group of patches for 433 security vulnerabilities. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and third-party components...
Vulnerabilities fixed in Oracle Essbase
Oracle has fixed vulnerabilities in Oracle Essbase. The vulnerabilities allow a malicious party to cause a denial-of-service DoS or to gain access to sensitive data. ------------------.------.------------------------------------- | CVE ID | CVSS | Vector |...
CVE-2023-21944
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
CVE-2023-21944
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
CVE-2023-21943
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
CVE-2023-21942
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
CVE-2023-21942
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
CVE-2023-21943
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
Design/Logic Flaw
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
Design/Logic Flaw
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
Design/Logic Flaw
Vulnerability in Oracle Essbase component: Security and Provisioning. The supported version that is affected is 21.4. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Essbase. Successful attacks require human interaction from a...
CVE-2023-21944
CVE-2023-21944 affects Oracle Essbase (Security and Provisioning), with vulnerable version 21.4. An unauthenticated attacker can access via HTTP over the network; exploitation requires user interaction and can lead to unauthorized access to data. The issue is one of several in the Oracle Essbase ...
CVE-2023-21942
CVE-2023-21942 affects Oracle Essbase (Security and Provisioning) with affected version 21.4. The vulnerability enables an unauthenticated attacker over the network (via HTTP) to compromise Essbase; exploitation requires user interaction from someone other than the attacker, and can lead to unaut...
CVE-2023-21943
Oracle Essbase 21.4 (Security and Provisioning) is affected by CVE-2023-21943. The vulnerability allows an unauthenticated, network-accessible attacker (HTTP) to compromise Essbase, requiring user interaction and potentially leading to unauthorized access to sensitive data. CVSS v3.1 base score i...
Oracle Essbase 安全漏洞
Oracle Essbase is an application from Oracle Corporation Oracle. enables organizations to quickly generate insights from multidimensional data sets using what-if analysis and data visualization tools. A security vulnerability exists in Oracle Essbase version 21.4. An attacker exploiting this...
Oracle Essbase 安全漏洞
Oracle Essbase is an application from Oracle Corporation Oracle. enables organizations to quickly generate insights from multidimensional data sets using what-if analysis and data visualization tools. A security vulnerability exists in Oracle Essbase version 21.4. An attacker exploiting this...
Oracle Essbase 安全漏洞
Oracle Essbase is an application from Oracle Corporation Oracle. enables organizations to quickly generate insights from multidimensional data sets using what-if analysis and data visualization tools. A security vulnerability exists in Oracle Essbase version 21.4. An attacker exploiting this...
PT-2023-2401 · Oracle · Oracle Essbase
Name of the Vulnerable Software and Affected Versions: Oracle Essbase version 21.4 Description: The issue is related to insufficient input validation in the Security and Provisioning component of Oracle Essbase. It allows an unauthenticated attacker with network access via HTTP to compromise Orac...
Oracle Essbase (Jan 2023 CPU)
The version of Oracle Essbase installed on the remote host is missing a security patch from the January 2023 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities, including: - Vulnerability in Oracle Essbase component: Essbase Web Platform OpenSSL. The supported versi...
Oracle Essbase Installed (Windows)
Binary data oracleessbaseinstalled.nbin...