N/A

Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Folders, Files & Attachments). Supported versions that are affected are 9.3.3, 9.3.4, 9.3.5 and 9.3.6. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Agile PLM accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Agile PLM. CVSS 3.0 Base Score 5.4 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:L).

N/A

N/A

Oracle Supply Chain Products Suite Agile PLM组件访问控制错误漏洞

Oracle Supply Chain Products Suite是美国甲骨文（Oracle）公司的一套供应链解决方案。该产品提供价值链计划、价值链执行、产品生命周期管理等功能。Agile PLM（Product Lifecycle Management）是其中的一个产品生命周期管理组件。 Oracle Supply Chain Products Suite中的Agile PLM组件的Folders, Files & Attachments子组件存在安全漏洞。攻击者可利用该漏洞未授权访问数据，造成拒绝服

N/A

N/A