Vulnerability in the Oracle Transportation Management product of Oracle Supply Chain (component: Authentication). The supported version that is affected is 6.4.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Transportation Management. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Transportation Management accessible data. CVSS 3.1 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.oracle.com/security-alerts/cpuoct2021.html |
History
Wed, 25 Sep 2024 20:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2021-10-20T10:49:41
Updated: 2024-09-25T19:39:33.792Z
Reserved: 2020-12-09T00:00:00
Link: CVE-2021-2476
Vulnrichment
Updated: 2024-08-03T16:45:50.612Z
NVD
Status : Analyzed
Published: 2021-10-20T11:16:17.773
Modified: 2021-10-26T12:23:37.673
Link: CVE-2021-2476
Redhat
No data.