CVE-2019-2427Corporation Webcenter Portal vulnerability

17 documents4 sources
Severity
5.3MEDIUMNVD
EPSS
0.8%
top 25.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Corporation Webcenter PortalOracle Webcenter Portal
Timeline
PublishedJan 16
Latest updateMay 13

Description

Vulnerability in the Oracle WebCenter Portal component of Oracle Fusion Middleware (subcomponent: WebCenter Spaces Application). Supported versions that are affected are 11.1.1.9.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebCenter Portal. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle WebCenter Portal accessible data. CVSS 3.0 Base Scor

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

NVDoracle/webcenter_portal11.1.1.9.0, 12.2.1.3.0+1
CVEListV5oracle_corporation/webcenter_portal11.1.1.9.0, 12.2.1.3.0+1

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-h8m6-63q3-fgc9: Vulnerability in the Oracle WebCenter Portal component of Oracle Fusion Middleware (subcomponent: WebCenter Spaces Application)2022-05-13
CVEList
CVE-2019-2427: Vulnerability in the Oracle WebCenter Portal component of Oracle Fusion Middleware (subcomponent: WebCenter Spaces Application)2019-01-16

💬Community

14
Bugzilla
CVE-2019-5855 chromium-browser: Integer overflow in PDFium2019-08-06
Bugzilla
CVE-2019-5860 chromium-browser: Use-after-free in PDFium2019-08-06
Bugzilla
CVE-2019-5850 chromium-browser: Use-after-free in offline page fetcher2019-08-06
Bugzilla
CVE-2019-5854 chromium-browser: Integer overflow in PDFium text rendering2019-08-06
Bugzilla
CVE-2019-5857 chromium-browser: Comparison of -0 and null yields crash2019-08-06
CVE-2019-2427 — MEDIUM severity | cvebase