CVE-2019-2431

Name of the Vulnerable Software and Affected Versions Oracle Argus Safety versions 8.1 and 8.2

Description The issue is related to inadequate access control in the Oracle Argus Safety component, specifically in the Console subcomponent. It allows an unauthenticated attacker with network access via HTTP to compromise Oracle Argus Safety, although it is difficult to exploit and requires human interaction from someone other than the attacker. Successful attacks can result in unauthorized creation, deletion, or modification access to critical data or all Oracle Argus Safety accessible data, potentially impacting additional products.

Recommendations For versions 8.1 and 8.2, update to a version that addresses the access control issue to prevent unauthorized access to critical data. At the moment, there is no information about a newer version that contains a fix for this vulnerability.