N/A

Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Services). Supported versions that are affected are 16.0 and 17.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel Core - Server Framework. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core - Server Framework accessible data as well as unauthorized read access to a subset of Siebel Core - Server Framework accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N).

N/A

N/A

Oracle Siebel CRM Siebel Core - Server Framework组件安全漏洞

Oracle Siebel CRM是美国甲骨文（Oracle）公司的一套客户关系管理解决方案，它包括销售管理、市场营销管理、客户服务系统、呼叫中心等模块。Siebel Core - Server Framework是其中的一个服务器框架组件。 Oracle Siebel CRM 16.0版本和17.0版本中的Siebel Core - Server Framework组件的Services子组件存在安全漏洞。攻击者可利用该漏洞未授权读取、更新、插入或删除数据，影响数据的保密性和完整性。

N/A

N/A