CVE-2002-1882 — Oracle E-business Suite vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.5%

top 18.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle E-business Suite

Timeline

PublishedDec 31

Latest updateApr 30

Description

Unknown vulnerability in AolSecurityPrivate.class in Oracle E-Business Suite 11i 11.1 through 11.6 allows remote attackers to bypass user authentication checks via unknown attack vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDoracle/e-business_suite6 versions+5

Patches

Patch: www.iss.net ↗Patch: www.securityfocus.com ↗Patch: www.iss.net ↗

🔴Vulnerability Details

GHSA

GHSA-xmv4-xjjv-xxhf: Unknown vulnerability in AolSecurityPrivate↗2022-04-30

▶

CVEList

CVE-2002-1882: Unknown vulnerability in AolSecurityPrivate↗2005-06-28

▶