Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The communications protocol for the Report Review Agent (RRA), aka FND File Server (FNDFS) program, in Oracle E-Business Suite 10.7, 11.0, and 11.5.1 to 11.5.8 allows remote attackers to bypass authentication and obtain sensitive information from the Oracle Applications Concurrent Manager by spoofing requests to the TNS Listener.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Oracle E-Business Suite RRA/FNDFS任意文件泄露漏洞
Vulnerability Description
Oracle应用系统FNDFS程序,用于从并发管理器(Concurrent Manager server)中获得报告和日志输出。 Oracle FNDFS服务程序使用的通信泄露存在漏洞,远程攻击者可以利用这个漏洞不需要系统或应用程序验证获得服务器上任意文件。 Oracle应用系统的FND文件服务程序,也可称为Report Review Agent(RRA),它们使用的通信协议存在漏洞,可能允许攻击者从Oracle应用系统并发管理服务器上绕过操作系统,数据库或应用程序验证而获得任意文件。攻击者将以'orac
CVSS Information
N/A
Vulnerability Type
N/A