CVE-2022-21503

Name of the Vulnerable Software and Affected Versions Oracle Cloud Infrastructure (affected versions not specified) Oracle Identity Cloud Service (affected versions not specified)

Description The issue concerns a vulnerability in Oracle's cloud infrastructure products, allowing a high-privileged attacker with network access to compromise the system and gain unauthorized access to sensitive data. The vulnerability is related to insufficient protection of service data in Oracle Identity Cloud Service, which can be exploited by a remote attacker to access protected information.

Recommendations For Oracle Cloud Infrastructure, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Oracle Identity Cloud Service, at the moment, there is no information about a newer version that contains a fix for this vulnerability.