PT-2019-16462 · Oracle · Oracle Hyperion Workspace

Published

2019-07-23

Updated

2020-08-24

CVE-2019-2735

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Oracle Hyperion Workspace version 11.1.2.4

Description The issue affects the UI and Visualization subcomponent of Oracle Hyperion Workspace, allowing a high-privileged attacker with network access via HTTP to compromise the system. This requires human interaction from someone other than the attacker and can result in unauthorized read access to a subset of accessible data.

Recommendations For Oracle Hyperion Workspace version 11.1.2.4, update to a version that includes a fix for this issue, as no specific workaround is provided.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2019-2735

Affected Products

Oracle Hyperion Workspace

PT-2019-16462 · Oracle · Oracle Hyperion Workspace

CVE-2019-2735

Related Identifiers

Affected Products

References · 3