OSA-38263975

Vulnerability in the Oracle Communications Network Analytics Data Director product of Oracle Communications (component: Security (libssh)). Supported versions that are affected are 24.2.0-24.2.1, 24.3.0, 25.1.100, 25.1.200 and 25.2.100. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Communications Network Analytics Data Director. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Communications Network Analytics Data Director accessible data as well as unauthorized read access to a subset of Oracle Communications Network Analytics Data Director accessible data.