OSA-38776220

Vulnerability in the Oracle GoldenGate Stream Analytics product of Oracle GoldenGate (component: General (lz4-java)). Supported versions that are affected are 19.1.0.0.0-19.1.0.0.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GoldenGate Stream Analytics. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle GoldenGate Stream Analytics accessible data. CVSS 3.1 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).