Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Vulnerability in the Oracle Time and Labor product of Oracle E-Business Suite (component: Timecard). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.10. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Time and Labor. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Time and Labor accessible data as well as unauthorized access to critical data or complete access to all Oracle Time and Labor accessible data. CVSS 3.1 Base Score 8.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
N/A
Vulnerability Title
Oracle Time and Labor 安全漏洞
Vulnerability Description
Oracle Time and Labor是美国Oracle公司的一个应用软件。一个时间记录和管理系统。 Oracle Time and Labor Timecard 12.1.1-12.1.3, 12.2.3-12.2.10 存在安全漏洞,该漏洞允许低特权的攻击者通过HTTP进行网络访问,从而减少Oracle的时间和工作量。导致未授权创建、删除或修改关键数据或所有Oracle Time and Labor可访问的数据,以及未授权访问关键数据或全部Oracle Time and Labor可访问的数据。
CVSS Information
N/A
Vulnerability Type
N/A