PT-2019-1253 · Oracle · Oracle Argus Safety

Published

2019-01-15

Updated

2020-08-24

CVE-2019-2430

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:L/Au:S/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Oracle Argus Safety versions 8.1 through 8.2

Description The issue allows a low-privileged attacker with network access via HTTP to compromise Oracle Argus Safety, resulting in unauthorized access to critical data or complete access to all Oracle Argus Safety accessible data. The vulnerability is easily exploitable and can be used by an attacker to gain access to sensitive information.

Recommendations For versions 8.1 and 8.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

BDU:2019-00403

CVE-2019-2430

Affected Products

Oracle Argus Safety

PT-2019-1253 · Oracle · Oracle Argus Safety

CVE-2019-2430

Weakness Enumeration

Related Identifiers

Affected Products

References · 6