111 matches found
Oracle Business Intelligence Enterprise Edition (OAS 7.0) (July 2024 CPU)
The version of Oracle Business Intelligence Enterprise Edition OAS 7.0.0.0 installed on the remote host is affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory, including the following: - Vulnerability in the Oracle Business Intelligence Enterprise Edition product of...
Vulnerabilities fixed in Oracle Analytics
Vulnerabilities have been fixed in Oracle Analytics. A malicious party can exploit the vulnerabilities to launch attacks that can lead to the following categories of damage: Denial-of-Service DoS. Access to sensitive data Access to system data Manipulation of data Remote code execution User right...
CVE-2024-21139
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component: Analytics Web Answers. Supported versions that are affected are 7.0.0.0.0, 7.6.0.0.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via...
CVE-2024-21139
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component: Analytics Web Answers. Supported versions that are affected are 7.0.0.0.0, 7.6.0.0.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via...
Oracle Business Intelligence Publisher (April 2024 CPU)
The versions of Oracle Business Intelligence Publisher installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2024 CPU advisory. - Vulnerability in the Oracle BI Publisher product of Oracle Analytics component: XML Services. Supported versions that are...
CVE-2024-21099
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component: Data Visualization. The supported version that is affected is 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2024-21084
Vulnerability in the Oracle BI Publisher product of Oracle Analytics component: Service Gateway. Supported versions that are affected are 7.0.0.0.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle BI Publisher. Whil...
CVE-2024-21064
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component: Analytics Web Answers. Supported versions that are affected are 7.0.0.0.0 and 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to...
CVE-2024-21001
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component: BI Platform Security. The supported version that is affected is 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2024-21099
The CVE-2024-21099 affects Oracle BI Enterprise Edition (OBIEE) 7.0.0.0.0, specifically the Data Visualization component. The root cause described in connected sources is insufficient input validation in Data Visualization, enabling a low-privilege, network-accessible attacker (via HTTP) to achie...
CVE-2024-21082
CVE-2024-21082 affects Oracle BI Publisher (Oracle Analytics), specifically the XML Services component. Affected versions are 7.0.0.0.0 and 12.2.1.4.0. The root cause is insufficient input validation in XML Services, enabling an unauthenticated attacker with network access via HTTP to compromise ...
CVE-2024-21084
CVE-2024-21084 affects Oracle BI Publisher (Oracle Analytics) in the Service Gateway component for versions 7.0.0.0.0 and 12.2.1.4.0. An unauthenticated attacker with network access via HTTP can read data from Oracle BI Publisher; attacks may impact related products (scope change). The descriptio...
CVE-2024-21083
CVE-2024-21083 affects Oracle Analytics, Oracle BI Publisher, Script Engine component. Affected versions: 7.0.0.0.0 and 12.2.1.4.0. The vulnerability allows a high-privilege attacker with network access over HTTP to compromise Oracle BI Publisher, potentially taking over the product. Sources cons...
CVE-2024-21064
The CVE-2024-21064 entry concerns Oracle Analytics’ Oracle Business Intelligence Enterprise Edition (OBIEE), specifically the Analytics Web Answers component. Affected versions include 7.0.0.0.0 and 12.2.1.4.0. The issue is described as built on insufficient access control in Analytics Web Answer...
Oracle BI Publisher 安全漏洞
Oracle BI Publisher is a reporting solution from Oracle Corporation USA that makes it easier and faster to create, manage and deliver all reports and documents than traditional reporting tools. A security vulnerability exists in Oracle BI Publisher for Oracle Analytics. An attacker has exploited...
Oracle BI Publisher 安全漏洞
Oracle BI Publisher is a reporting solution from Oracle Corporation USA that makes it easier and faster to create, manage and deliver all reports and documents than traditional reporting tools. A security vulnerability exists in Oracle BI Publisher for Oracle Analytics. An attacker could exploit...
Oracle BI Publisher 安全漏洞
Oracle BI Publisher is a reporting solution from Oracle Corporation USA that makes it easier and faster to create, manage and deliver all reports and documents than traditional reporting tools. A security vulnerability exists in Oracle BI Publisher for Oracle Analytics. An attacker has exploited...
Oracle Business Intelligence Enterprise Edition 安全漏洞
Oracle Business Intelligence Enterprise Edition is an intelligent business analytics software from Oracle Corporation USA. Visualize and analyze enterprise data to support decision-making, reduce total cost of ownership, and increase ROI across the organization. A security vulnerability exists in...
CVE-2024-20980
Vulnerability in the Oracle BI Publisher product of Oracle Analytics component: Web Server. Supported versions that are affected are 6.4.0.0.0 and 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle BI Publisher. Successful...
CVE-2024-20913
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics component: BI Platform Security. The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...