OSA-36278180
Vulnerability in the Oracle Communications Service Catalog and Design product of Oracle Communications Applications (component: Patch (OkHttp)). The supported version that is affected is 8.0.0.1.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Communications Service Catalog and Design executes to compromise Oracle Communications Service Catalog and Design. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Communications Service Catalog and Design accessible data. CVSS 3.1 Base Score 5.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).
Risk Scores
Timeline
- Sep 18, 2024 CVE Published