CVE-2019-2927

3 documents3 sources

Severity

6.4MEDIUM

EPSS

1.4%

top 19.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Corporation Hyperion Data Relationship Management Oracle Hyperion Data Relationship Management

Timeline

PublishedOct 16

Latest updateMay 24

Description

Vulnerability in the Hyperion Data Relationship Management product of Oracle Hyperion (component: Access and Security). The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Data Relationship Management. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Hyperion Data Relationship M…

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:HExploitability: 0.5 | Impact: 5.9

Affected Packages2 packages

▶NVDoracle/hyperion_data_relationship_management11.1.2.4

▶CVEListV5oracle_corporation/hyperion_data_relationship_management11.1.2.4

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-j2cj-93j2-2cp6: Vulnerability in the Hyperion Data Relationship Management product of Oracle Hyperion (component: Access and Security)↗2022-05-24

▶

CVEList

CVE-2019-2927: Vulnerability in the Hyperion Data Relationship Management product of Oracle Hyperion (component: Access and Security)↗2019-10-16

▶