Vulnerability in Oracle E-Business Suite User Interface
CVE-2017-3443

8.2HIGH

Key Information:

Vendor

Oracle
Status
Common Applications
Vendor
CVE Published:
27 January 2017

What is CVE-2017-3443?

This vulnerability affects the Oracle Common Applications component of the Oracle E-Business Suite, allowing unauthenticated attackers to gain unauthorized access through HTTP. The attack requires human interaction and can lead to significant consequences, including unauthorized access to critical data, as well as the ability to update, insert, or delete sensitive information within the applications. This vulnerability poses a considerable risk not only to the Oracle Common Applications but potentially to other products relying on this interface, making it essential to address.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Common Applications 12.1.1

Common Applications 12.1.2

Common Applications 12.1.3

References

http://www.securityfocus.com/bid/95612
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1037639
vdb-entryx_refsource_SECTRACK
http://www.oracle.com/technetwork/security-advisory/cpuja...
x_refsource_CONFIRM

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.