PT-2026-3726 · Oracle · Epm Agent+1
Patrick Murphy
·
Published
2026-01-20
·
Updated
2026-01-21
·
CVE-2026-21979
CVSS v2.0
4.6
Medium
| Vector | AV:L/AC:L/Au:S/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Oracle Planning and Budgeting Cloud Service versions 25.04.07
Description
A flaw exists within the Oracle Planning and Budgeting Cloud Service, specifically in the EPM Agent component. A highly privileged attacker with access to the system can compromise the service. Exploitation requires interaction from someone other than the attacker and could lead to unauthorized access to sensitive data or complete data access.
Recommendations
Update the EPM Agent.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Epm Agent
Oracle Planning/Budgeting Cloud Service