Authentication Bypass Vulnerability in Oracle Argus Safety by Oracle
CVE-2018-2613

8.2HIGH

Key Information:

Vendor: Oracle
Status: Argus Safety
Vendor: CVE Published:; 18 January 2018

What is CVE-2018-2613?

An authentication bypass vulnerability in Oracle Argus Safety allows an unauthenticated attacker to gain unauthorized access via HTTP. This enables the attacker to view and manipulate sensitive data stored in Oracle Argus Safety, potentially resulting in unauthorized modifications, deletions, or inserts of data.

Affected Version(s)

Argus Safety 7.x

Argus Safety 8.0.x

Argus Safety 8.1

References

http://www.oracle.com/technetwork/security-advisory/cpuja...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/102616

vdb-entryx_refsource_BID

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2018
Vulnerability Reserved
Dec 15, 2017