CVE-2020-2564
CVE-2020-2564 affects Oracle Siebel CRM’s Siebel UI Framework (component: EAI ) with affected versions up to 19.10. An unauthenticated, network-accessible attacker via HTTP can cause unauthorized read access to a subset of Siebel UI Framework data. The root cause is described as an access-control...