N/A

Vulnerability in the Oracle CRM Technical Foundation product of Oracle E-Business Suite (component: Preferences). Supported versions that are affected are 12.2.3 - 12.2.10. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle CRM Technical Foundation. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle CRM Technical Foundation accessible data as well as unauthorized access to critical data or complete access to all Oracle CRM Technical Foundation accessible data. CVSS 3.1 Base Score 6.5 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N).

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

N/A

Oracle CRM Technical Foundation product 访问控制错误漏洞

Oracle CRM Technical Foundation是美国甲骨文（Oracle）公司的一个CRM应用程序开发和部署的基础组件。该软件应用于开发销售，市场营销，服务， 电子商务等场景。 Oracle CRM Technical Foundation product 12.2.3版本至12.2.10版本存在访问控制错误漏洞，攻击者可利用该漏洞与网络访问通过HTTP危及Oracle CRM技术基础。对该漏洞的成功攻击可能导致对关键数据或所有Oracle CRM Technical Foundation

N/A

N/A