CVE-2023-22127

Summary

CVE-2023-22127 is a vulnerability impacting Oracle Outside In Technology in Oracle Fusion Middleware, specifically the Content Access SDK, Image Export SDK, PDF Export SDK, and HTML Export SDK components. This issue affects Oracle Fusion Middleware version 8.5.6 and allows a low-privileged attacker with network access to compromise the product. Successful exploitation can result in unauthorized updates, insertions, or deletions, as well as unauthorized read access to a subset of data and partial denial of service. The vulnerability carries a CVSS 3.1 Base Score of 6.3, indicating medium impact on confidentiality, integrity, and availability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.