Vulnerability in Oracle Communications Session Border Controller by Oracle
CVE-2020-14580

8.2HIGH

Key Information:

Vendor: Oracle
Status: Communications Session Border Controller
Vendor: CVE Published:; 15 July 2020

Summary

A vulnerability in Oracle Communications Session Border Controller allows low-privileged attackers with SSH network access to compromise the system. This exploitation requires human interaction from an individual other than the attacker. While primarily affecting the Oracle Communications Session Border Controller, successful attacks can have a far-reaching impact on interconnected systems, possibly leading to unauthorized access, data manipulation, and a partial denial of service. It is essential for organizations using affected versions (8.1.0, 8.2.0, and 8.3.0) to apply necessary security patches to mitigate these risks.

Affected Version(s)

Communications Session Border Controller 8.1.0

Communications Session Border Controller 8.2.0

Communications Session Border Controller 8.3.0

References

https://www.oracle.com/security-alerts/cpujul2020.html

x_refsource_MISC

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Jul 15, 2020
Vulnerability Reserved
Jun 19, 2020