CVE-2022-21399

Name of the Vulnerable Software and Affected Versions Oracle Communications Operations Monitor versions 3.4, 4.2, 4.3, 4.4, and 5.0

Description The vulnerability exists in the Mediation Engine component of Oracle Communications Operations Monitor due to insufficient input validation. This allows a remote attacker to gain read access, modify, add, or delete data, or cause a partial denial of service using HTTP requests. Successful attacks can result in unauthorized access to some data, as well as the ability to cause a partial denial of service.

Recommendations For versions 3.4, 4.2, 4.3, 4.4, and 5.0, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.