Vulnerability in the Oracle General Ledger component of Oracle E-Business Suite (subcomponent: Account Hierarchy Manager). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle General Ledger. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle General Ledger accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2018-04-19T02:00:00
Updated: 2024-08-05T04:36:38.363Z
Reserved: 2017-12-15T00:00:00
Link: CVE-2018-2872
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-04-19T02:29:07.507
Modified: 2019-10-03T00:03:26.223
Link: CVE-2018-2872
Redhat
No data.