139 matches found
Code injection
Vulnerability in the Essbase Analytic Provider Services product of Oracle Essbase component: Web Services. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Essbase Analytic...
Design/Logic Flaw
Vulnerability in the Essbase Analytic Provider Services product of Oracle Essbase component: JAPI. The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Essbase Analytic Provider Services...
CVE-2021-2350
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
CVE-2021-2349
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
Design/Logic Flaw
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
Design/Logic Flaw
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
CVE-2021-2435
Vulnerability in the Essbase Analytic Provider Services product of Oracle Essbase component: JAPI. The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Essbase Analytic Provider Services...
CVE-2021-2435
CVE-2021-2435 affects Oracle Essbase Analytic Provider Services (EAPS) component JAPI in Oracle Essbase, affected version 11.1.2.4. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise EAPS, with human interaction required for exploitation. Consequences ...
CVE-2021-2435
Vulnerability in the Essbase Analytic Provider Services product of Oracle Essbase component: JAPI. The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Essbase Analytic Provider Services...
CVE-2021-2433
Vulnerability in the Essbase Analytic Provider Services product of Oracle Essbase component: Web Services. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Essbase Analytic...
CVE-2021-2433
Vulnerability in the Essbase Analytic Provider Services product of Oracle Essbase component: Web Services. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Essbase Analytic...
CVE-2021-2433
CVE-2021-2433 affects Oracle’s Essbase Analytic Provider Services (Web Services) in Essbase. Affected versions are 11.1.2.4 and 21.2. An unauthenticated attacker with network access via HTTP can cause the service to hang or crash repeatedly (complete DOS). The CVSS 3.1 base score is 7.5 (Availabi...
CVE-2021-2350
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
CVE-2021-2349
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
CVE-2021-2349
Vulnerability in the Hyperion Essbase Administration Services product of Oracle Essbase component: EAS Console. Supported versions that are affected are 11.1.2.4 and 21.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hyperion Essbase...
CVE-2021-2349
CVE-2021-2349 affects Oracle Hyperion Essbase Administration Services (EAS Console). Affected are 11.1.2.4 and 21.2. The flaw allows an unauthenticated attacker with network access via HTTP to compromise EAS, potentially leading to unauthorized access to all EAS data. CVSSv3.1 base score is 8.6 (...
Oracle Essbase 输入验证错误漏洞
Oracle Essbase is an application from Oracle Corporation Oracle. enables organizations to quickly generate insights from multidimensional data sets using what-if analysis and data visualization tools. An input validation error vulnerability exists in Oracle Essbase version 11.1.2.4, which can be...
Oracle Essbase 输入验证错误漏洞
Oracle Hyperion Essbase Administration Services is a robust, cross-platform graphical user interface that makes Essbase administration tasks easy to perform.Oracle Hyperion Essbase Administration Services 11.1.2.4. Release 21.2 contains a security vulnerability in the EAS Console component. An...
Oracle Essbase 输入验证错误漏洞
Oracle Essbase is an application from Oracle Corporation Oracle. enables organizations to quickly generate insights from multidimensional data sets using what-if analysis and data visualization tools. An input validation error vulnerability exists in Oracle Essbase versions 11.1.2.4 and 21.2, whi...