CVE-2020-14705

Name of the Vulnerable Software and Affected Versions Oracle GoldenGate versions prior to 19.1.0.0.0

Description The issue is related to insufficient input validation in the Process Management component of Oracle GoldenGate, which can be exploited by a remote attacker to impact the integrity, availability, and confidentiality of information. Successful attacks can result in the takeover of Oracle GoldenGate and may significantly impact additional products.

Recommendations For versions prior to 19.1.0.0.0, update to version 19.1.0.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the physical communication segment attached to the hardware where Oracle GoldenGate executes to minimize the risk of exploitation.