PT-2019-16451 · Oracle · Oracle Data Integrator
Publicado
2019-04-23
·
Atualizado
2020-08-24
·
CVE-2019-2720
CVSS v2.0
3.5
Baixa
| Vetor | AV:N/AC:M/Au:S/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle Data Integrator versions 11.1.1.9.0 and 12.2.1.3.0
Description
The issue allows a low-privileged attacker with network access via HTTP to compromise Oracle Data Integrator, resulting in unauthorized read access to a subset of Oracle Data Integrator accessible data.
Recommendations
For version 11.1.1.9.0, update to a version that contains a fix for this issue.
For version 12.2.1.3.0, update to a version that contains a fix for this issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Oracle Data Integrator