CVE-2017-10359

Name of the Vulnerable Software and Affected Versions Oracle Hyperion BI+ version 11.1.2.4

Description The issue affects the UI and Visualization subcomponent of Oracle Hyperion BI+, allowing an unauthenticated attacker with network access via HTTP to compromise the system. This requires human interaction from someone other than the attacker. Successful attacks can result in unauthorized access to modify, insert, or delete some data, as well as unauthorized read access to a subset of the data.

Recommendations For Oracle Hyperion BI+ version 11.1.2.4, update to a version that includes a fix for this issue, as no specific workaround is provided.