Vulnerability in the Hyperion BI+ product of Oracle Hyperion (component: IQR-Foundation service). The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise Hyperion BI+. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Hyperion BI+ accessible data. CVSS 3.1 Base Score 2.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.oracle.com/security-alerts/cpuoct2020.html |
History
Thu, 26 Sep 2024 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2020-10-21T14:04:24
Updated: 2024-09-26T20:26:08.886Z
Reserved: 2020-06-19T00:00:00
Link: CVE-2020-14770
Vulnrichment
Updated: 2024-08-04T12:53:43.229Z
NVD
Status : Analyzed
Published: 2020-10-21T15:15:17.530
Modified: 2020-10-26T15:04:35.953
Link: CVE-2020-14770
Redhat
No data.