CVE-2021-2368

Name of the Vulnerable Software and Affected Versions Oracle Siebel CRM versions 21.5 and prior

Description The issue is related to insufficient input validation in the Siebel Core - Server Infrastructure component of Oracle Siebel CRM. This allows an unauthenticated attacker with network access via HTTPS to potentially compromise the system. Successful exploitation can result in unauthorized access to critical data or complete access to all accessible data within Siebel CRM.

Recommendations For Oracle Siebel CRM versions 21.5 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.