CVE-2023-22013

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jul 18, 2023

Updated: Jul 27, 2023

Summary

CVE-2023-22013 is a vulnerability affecting Oracle Business Intelligence Enterprise Edition's Analytics Server component (versions 6.4.0.0.0 and 7.0.0.0.0). This issue allows a low-privileged attacker with network access to compromise the system via HTTP. The exploitation of this vulnerability can lead to unauthorized update, insert, or delete access to certain data. The Base Score of CVSS 3.1 for this issue is 4.3, with a focus on integrity impacts. This vulnerability poses a risk to Oracle Business Intelligence Enterprise Edition users if not addressed promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sCYHu2
https://www.cve.org/CVERecord?id=CVE-2023-22013
https://nvd.nist.gov/vuln/detail/CVE-2023-22013

Back to Vulnerability Database

CVE-2023-22013

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations