Data Security Vulnerability in Oracle Transportation Management by Oracle
CVE-2020-14544

4.3MEDIUM

Key Information:

Vendor: Oracle
Status: Transportation Management
Vendor: CVE Published:; 15 July 2020

What is CVE-2020-14544?

An easily exploitable vulnerability exists in Oracle Transportation Management, affecting version 6.4.3, which could allow a low-privileged attacker with network access via HTTP to gain unauthorized read access to certain data. This vulnerability poses a risk of sensitive information exposure, highlighting the importance of securing applications and implementing precautionary measures.

Affected Version(s)

Transportation Management 6.4.3

References

https://www.oracle.com/security-alerts/cpujul2020.html

x_refsource_MISC

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 15, 2020
Vulnerability Reserved
Jun 19, 2020