CVE-2023-22021

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jul 18, 2023

Updated: Jul 27, 2023

Summary

CVE-2023-22021 is a vulnerability affecting the Oracle Business Intelligence Enterprise Edition's Analytics Server component (versions 6.4.0.0.0 and 7.0.0.0.0). This issue allows a low-privileged attacker with network access to exploit it via HTTP, leading to a partial denial of service (partial DOS) of Oracle Business Intelligence Enterprise Edition. The impact level is rated as medium (CVSS Base Score 4.3) in terms of availability. Attackers can cause this easily exploitable vulnerability to disrupt the availability of the Oracle Business Intelligence Enterprise Edition system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sCYHu6
https://www.cve.org/CVERecord?id=CVE-2023-22021
https://nvd.nist.gov/vuln/detail/CVE-2023-22021

Back to Vulnerability Database

CVE-2023-22021

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations