Data Security Vulnerability in Oracle Transportation Management by Oracle
CVE-2020-14544

4.3MEDIUM

Key Information:

Vendor
Oracle
Status
Transportation Management
Vendor
CVE Published:
15 July 2020

Summary

An easily exploitable vulnerability exists in Oracle Transportation Management, affecting version 6.4.3, which could allow a low-privileged attacker with network access via HTTP to gain unauthorized read access to certain data. This vulnerability poses a risk of sensitive information exposure, highlighting the importance of securing applications and implementing precautionary measures.

Affected Version(s)

Transportation Management 6.4.3

References

https://www.oracle.com/security-alerts/cpujul2020.html
x_refsource_MISC

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.