The vulnerability of the Web Catalog sub-component of the Oracle Business Intelligence Enterprise Edition software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Web Catalog sub-component of the Oracle Business Intelligence Enterprise Edition software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information using th...

CVE-2019-2605

Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware subcomponent: Web Catalog. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Difficult to exploit vulnerability allows unauthenticated attacker with network...

Buffer overflow

Vulnerability in the Oracle Business Intelligence Enterprise Edition component of Oracle Fusion Middleware subcomponent: Web Catalog. Supported versions that are affected are 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. Difficult to exploit vulnerability allows unauthenticated attacker with network...

CVE-2019-2605

CVE-2019-2605 affects Oracle Fusion Middleware’s Oracle Business Intelligence Enterprise Edition (Web Catalog) with affected versions 11.1.1.9.0, 12.2.1.3.0 and 12.2.1.4.0. The vulnerability allows an unauthenticated attacker, over HTTP, to read data from the BI EE Web Catalog; exploitation is de...

Oracle Fusion Middleware Business Intelligence Enterprise Edition Information Disclosure Vulnerability

Oracle Fusion Middleware Oracle Fusion Middleware is a suite of business innovation platforms for enterprise and cloud environments from Oracle. The platform provides middleware, software collections and other features. business Intelligence Enterprise Edition is one of the components for the...

Instacart: View & add to cart unlisted items via IDOR

Access Control vulnerability that would let an attacker order certain items from the API, even though they are missing from the Web catalog...