CVE-2020-2931

Name of the Vulnerable Software and Affected Versions Oracle Knowledge versions 8.6.0 through 8.6.3

Description The issue is related to insufficient input validation in the Web Applications - InfoCenter component of Oracle Knowledge, which can be exploited by a remote attacker to impact the integrity, confidentiality, and availability of protected information via the HTTP protocol. This can result in the takeover of Oracle Knowledge.

Recommendations For versions 8.6.0 through 8.6.3, update to a version that addresses the insufficient input validation issue to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.