CVE-2022-21561 – Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (componen …

19 July 2022

Vuln ID: CVE-2022-21561

Published: 2022-07-19 22:15:12Z

Description: Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime). Supported versions that are affected are 9.2.6.3 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise JD Edwards EnterpriseOne Tools. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all JD Edwards EnterpriseOne Tools accessible data. CVSS 3.1 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N).

Source: NVD.NIST.GOV

Date:

19 July 2022

Categorie(s):

NVD

Tag(s):

NVD

An attorney says she saw her library reading habits reflected in mobile ads. That’s not supposed to happen18 May 2024
Gawd, after that week, we wonder what’s next for China and the Western world18 May 2024
[FREE EBOOKS] Cyber Security and Network Security, Build Your Own Programming Language – Second Edition & Four More Best Selling Titles18 May 2024
US Official Warns a Cell Network Flaw Is Being Exploited for Spying18 May 2024
How two brothers allegedly swiped $25M in a 12-second Ethereum heist18 May 2024