CVE-2015-1926

Name of the Vulnerable Software and Affected Versions Oracle WebCenter Portal versions 11.1.1.8.0 through 11.1.1.9.0 Oracle Applications Framework versions 12.2.3 through 12.2.4

Description The issue is related to errors in the code of the Oracle WebCenter Portal component in Oracle Fusion Middleware and the Oracle Applications Framework component in Oracle E-Business Suite. It allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Portal. The exploitation of this issue may enable a remote attacker to compromise the confidentiality and integrity of information.

Recommendations For Oracle WebCenter Portal versions 11.1.1.8.0 through 11.1.1.9.0, update to a version that includes the fix for this issue. For Oracle Applications Framework versions 12.2.3 through 12.2.4, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.