CVE-2019-2779

Name of the Vulnerable Software and Affected Versions Oracle Siebel CRM versions prior to 19.0

Description The issue allows a high privileged attacker with network access via HTTP to compromise the Siebel Core - Common Components component, specifically the Email subcomponent. This can result in unauthorized access to critical data or complete access to all accessible data. The attack requires human interaction from a person other than the attacker and is considered difficult to exploit.

Recommendations For versions prior to 19.0, update to a version 19.0 or later to resolve the issue.