PT-2026-3721 · Oracle · Oracle Life Sciences Central Designer

Publicado

2026-01-20

·

Atualizado

2026-01-20

·

CVE-2026-21974

CVSS v3.1

5.3

Média

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions Oracle Life Sciences Central Designer version 7.0.1.0
Description An easily exploitable issue affects Oracle Life Sciences Central Designer. An unauthenticated attacker with network access via HTTP can compromise the software. Successful exploitation may result in unauthorized read access to a subset of data accessible through Oracle Life Sciences Central Designer.
Recommendations Update Oracle Life Sciences Central Designer to a newer version that addresses this issue.

Correção

RCE

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20CWE-200

Identificadores relacionados

BDU:2026-01002
CVE-2026-21974

Produtos afetados

Oracle Life Sciences Central Designer