CVE-2019-2572 | THREATINT

Description

Vulnerability in the Oracle SOA Suite component of Oracle Fusion Middleware (subcomponent: Fabric Layer). The supported version that is affected is 11.1.1.9.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle SOA Suite. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle SOA Suite accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).

PUBLISHED Reserved 2018-12-14 | Published 2019-04-23 | Updated 2024-10-02 | Assigner oracle

Problem types

Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle SOA Suite. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle SOA Suite accessible data.

Product status

11.1.1.9.0

affected

References

www.oracle.com/.../security-advisory/cpuapr2019-5072813.html

cve.org (CVE-2019-2572)

nvd.nist.gov (CVE-2019-2572)

Download JSON