Vulnerability in the Hyperion Financial Reporting product of Oracle Hyperion (component: Web Based Report Designer). The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Reporting. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Hyperion Financial Reporting accessible data. CVSS 3.0 Base Score 2.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.oracle.com/security-alerts/cpuapr2020.html |
History
Mon, 30 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2020-04-15T13:29:45
Updated: 2024-09-30T15:39:48.241Z
Reserved: 2019-12-10T00:00:00
Link: CVE-2020-2769
Vulnrichment
Updated: 2024-08-04T07:17:02.534Z
NVD
Status : Analyzed
Published: 2020-04-15T14:15:26.310
Modified: 2020-04-16T18:41:40.367
Link: CVE-2020-2769
Redhat
No data.