3 matches found
CVE-2021-2350
CVE-2021-2350 affects Oracle Hyperion Essbase Administration Services (EAS Console). The vulnerability impacts Essbase 11.1.2.4 and 21.2, allowing an unauthenticated attacker with network access over HTTP to compromise EAS and gain unauthorized access to data or full EAS data. Documented base sco...
CVE-2023-21961
CVE-2023-21961 affects Oracle Hyperion Essbase Administration Services (EAS Administration and EAS Console) in Oracle Essbase, specifically version 21.4.3.0.0. The root cause is insufficient input validation within EAS Administration/EAS Console, allowing a high-privilege, logged-in attacker to c...
CVE-2021-2349
CVE-2021-2349 affects Oracle Hyperion Essbase Administration Services (EAS Console). Affected are 11.1.2.4 and 21.2. The flaw allows an unauthenticated attacker with network access via HTTP to compromise EAS, potentially leading to unauthorized access to all EAS data. CVSSv3.1 base score is 8.6 (...