Oracle · Oracle Hyperion Infrastructure Technology · CVE-2026-35244
**Name of the Vulnerable Software and Affected Versions**
Oracle Hyperion Infrastructure Technology version 11.2.24.0.000
**Description**
An issue in the Lifecycle Management component of Oracle Hyperion Infrastructure Technology allows a high-privileged attacker with network access via HTTP to compromise the system. The attack requires human interaction from a person other than the attacker. Successful exploitation can lead to unauthorized read access to a subset of data, as well as unauthorized creation, deletion, or modification of critical data or all accessible data within the infrastructure.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.