5 matches found
Vulnerabilities fixed in Oracle Essbase
Vulnerabilities have been fixed in Oracle Essbase products. A authenticated malicious party can exploit the vulnerabilities to gain access to sensitive data. Oracle has fixed the vulnerabilities in the following products: - Oracle Essbase - Oracle Hyperion Essbase Administration Services...
CVE-2021-2350
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
CVE-2021-2349
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
CVE-2021-2349
CVE-2021-2349 affects Oracle Hyperion Essbase Administration Services (EAS Console). Affected are 11.1.2.4 and 21.2. The flaw allows an unauthenticated attacker with network access via HTTP to compromise EAS, potentially leading to unauthorized access to all EAS data. CVSSv3.1 base score is 8.6 (...
CVE-2018-3142
CVE-2018-3142 affects Oracle Hyperion Essbase Administration Services (EAS Console) version 11.1.2.4. The vulnerability resides in EAS Console and can be exploited by a low-privilege attacker with network access via HTTP to compromise the Hyperion EAS Services. CVSSv3.0 base score is 7.7 (Confide...