VDB
GCVE-110-NCSC-2024-293
GCVE-110-NCSC-2024-293
Advisory PublishedCVSS 5.3/10
Er zijn kwetsbaarheden verholpen in Oracle Communications Applications.
Weaknesses (CWE)
CWE-20Improper Input ValidationCWE-200Exposure of Sensitive Information to an Unauthorized ActorCWE-1329Reliance on Component That is Not UpdateableCWE-203Observable DiscrepancyCWE-404Improper Resource Shutdown or ReleaseCWE-770Allocation of Resources Without Limits or ThrottlingCWE-400Uncontrolled Resource ConsumptionCWE-201Insertion of Sensitive Information Into Sent DataCWE-222Truncation of Security-relevant InformationCWE-416Use After FreeCWE-284Improper Access ControlCWE-601URL Redirection to Untrusted Site ('Open Redirect')CWE-787Out-of-bounds Write
Risk Scores
CVSS 3.1
5.3/10
Medium · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| oracle | communications_convergence | — | — |
| oracle | communications_offline_mediation_controller | — | — |
| oracle | communications_cloud_native_core_unified_data_repository | — | — |
| oracle | communications_billing_and_revenue_management | — | — |
| oracle | communications_cloud_native_core_network_function_cloud_native_environment | — | — |
| oracle | communications_services_gatekeeper | — | — |
| oracle | communications_instant_messaging_server | — | — |
| oracle | communications_cloud_native_core_policy | — | — |
| oracle | communications_unified_assurance | — | — |
| oracle | communications_eagle_software | — | — |
| oracle | communications_session_report_manager | — | — |
| oracle | communications_cloud_native_core_network_repository_function | — | — |
| oracle | communications_eagle_ftp_table_base_retrieval | — | — |
| oracle | communications_pricing_design_center | — | — |
| oracle | communications_webrtc_session_controller | — | — |
| oracle | communications_performance_intelligence | — | — |
| oracle | communications_brm_-_elastic_charging_engine | — | — |
| oracle | communications_diameter_intelligence_hub | — | — |
| oracle | communications_cloud_native_core_automated_test_suite | — | — |
| oracle | communications_ip_service_activator | — | — |
| oracle | communications_converged_application_server_-_service_controller | — | — |
| oracle | communications_cloud_native_core_network_exposure_function | — | — |
| oracle | communications_contacts_server | — | — |
| oracle | communications_converged_application_server | — | — |
| oracle | communications_messaging_server | — | — |
| oracle | communications_user_data_repository | — | — |
| oracle | communications_network_integrity | — | — |
| oracle | communications_converged_charging_system | — | — |
| oracle | communications_session_route_manager | — | — |
| oracle | communications_eagle_element_management_system | — | — |
| oracle | communications_service_catalog_and_design | — | — |
| oracle | communications_cloud_native_core_security_edge_protection_proxy | — | — |
| oracle | communications_performance_intelligence_center__pic__software | — | — |
| oracle | communications_data_model | — | — |
| oracle | communications_fraud_monitor | — | — |
| oracle | communications_eagle_application_processor | — | — |
| oracle | communications_evolved_communications_application_server | — | — |
| oracle | communications_session_border_controller | — | — |
| oracle | communications_cloud_native_configuration_console | — | — |
| oracle | communications_design_studio | — | — |
| oracle | communications_network_analytics_data_director | — | — |
| oracle | communications_cloud_native_core_service_communication_proxy | — | — |
| oracle | communications_convergent_charging_controller | — | — |
| oracle | communications_cloud_native_core_binding_support_function | — | — |
| oracle | communications_session_router | — | — |
| oracle | communications_network_charging_and_control | — | — |
| oracle | communications_elastic_charging_engine | — | — |
| oracle | communications_subscriber-aware_load_balancer | — | — |
| oracle | communications_core_session_manager | — | — |
| oracle | communications_interactive_session_recorder | — | — |
| oracle | communications_order_and_service_management | — | — |
| oracle | communications_unified_session_manager | — | — |
| oracle | communications_eagle_lnp_application_processor | — | — |
| oracle | communications_operations_monitor | — | — |
| oracle | communications_metasolv_solution | — | — |
| oracle | communications_diameter_signaling_router | — | — |
| oracle | communications_cloud_native_core_network_slice_selection_function | — | — |
| oracle | communications_cloud_native_core_console | — | — |
| oracle | communications_calendar_server | — | — |
| oracle | communications_cloud_native_core_network_data_analytics_function | — | — |
| oracle | communications_element_manager | — | — |
| oracle | communications_unified_inventory_management | — | — |
| oracle | communications_policy_management | — | — |
References
Browse GCVE Records
73,443 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.