PT-2021-21046 · Oracle · Oracle Secure Global Desktop

Published

2021-10-20

Updated

2021-10-26

CVE-2021-35649

CVSS v2.0

5.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Oracle Secure Global Desktop version 5.6

Description: The issue allows a low-privileged attacker with network access via multiple protocols to compromise Oracle Secure Global Desktop, resulting in unauthorized read access to a subset of accessible data and the ability to cause a partial denial of service.

Recommendations: For Oracle Secure Global Desktop version 5.6, update to a version that contains a fix for this issue to prevent unauthorized access and denial of service attacks.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-35649

Affected Products

Oracle Secure Global Desktop

PT-2021-21046 · Oracle · Oracle Secure Global Desktop

CVE-2021-35649

Related Identifiers

Affected Products

References · 3