CVE-2023-22010

CVSS 3.1 Score 2.2 of 10 (low)

Details

Published Jul 18, 2023

Updated: Jul 27, 2023

Summary

CVE-2023-22010 is a vulnerability affecting Oracle Essbase version 21.4.3.0.0 in its Security and Provisioning component. This issue allows a high privileged attacker with network access to compromise Oracle Essbase through HTTP. Successful exploitation leads to unauthorized read access to a subset of the affected system's data, with potential confidentiality impacts. The CVSS Base Score is 2.2. Attackers must have network access and high privileges to exploit this vulnerability, making it difficult to exploit in practice.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sCYItj
https://www.cve.org/CVERecord?id=CVE-2023-22010
https://nvd.nist.gov/vuln/detail/CVE-2023-22010

Back to Vulnerability Database

CVE-2023-22010

CVSS 3.1 Score 2.2 of 10 (low)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations