OSA-32300333
Vulnerability in the Oracle Utilities Application Framework product of Oracle Utilities Applications (component: Security (Apache Groovy)). Supported versions that are affected are 4.3.0.5.0-4.3.0.6.0 and 4.4.0.0.0-4.4.0.3.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Utilities Application Framework executes to compromise Oracle Utilities Application Framework. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Utilities Application Framework accessible data. CVSS 3.1 Base Score 5.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).
Risk Scores
Timeline
- Apr 24, 2026 CVE Published