CVE-2023-22060

Name of the Vulnerable Software and Affected Versions Oracle Hyperion Workspace version 11.2.13.0.000

Description The issue is related to insecure privilege management in the UI and Visualization component of Oracle Hyperion Workspace. It allows a low-privileged attacker with network access via HTTP to compromise Oracle Hyperion Workspace. Successful attacks require human interaction from a person other than the attacker and can result in unauthorized creation, deletion, or modification access to critical data, as well as unauthorized access to critical data and the ability to cause a partial denial of service.

Recommendations For Oracle Hyperion Workspace version 11.2.13.0.000, consider applying security patches or updates to fix the vulnerability, as no specific workaround is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.