CNNVD-202601-3105 Information
CNNVD ID
CNNVD-202601-3105
Related CVE
- CNNVD Published: 2026-01-20
Description (Chinese)
Oracle Utilities Applications是美国甲骨文(Oracle)公司的一套公用事业行业技术平台。 Oracle Utilities Applications的Oracle Utilities Application Framework 4.4.0.3.0版本、4.5.0.0.0版本、4.5.0.1.1版本、4.5.0.1.3版本、4.5.0.2.0版本、25.4版本和25.10版本存在安全漏洞,该漏洞源于低权限攻击者可通过HTTP网络访问进行攻击,可能导致对部分可访问数据进行未经授权的更新、插入或删除以及未经授权的读取访问。
Description (English)
Oracle Utilities Applications is a set of U.S. Oracle ’ s utility technology platform. There are security gaps in Oracle Utilities Applications Applications, Version 4.4.0.0.0, Version 4.5.0.0, Version 4.5.0.1.1, Version 4.5.0.1.3, Version 4.5.0.2.0, Version 25.4 and Version 25.10 of Oracle Applications, which stem from the fact that low-authorized attackers can attack through the HTTP network, which may lead to unauthorized updates, insertions or deletions, and unauthorized access to some accessible data.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
甲骨文
Published
2026-01-20
Last Modified
2026-02-24
References
https://www.oracle.com/security-alerts/cpujan2026.html https://access.redhat.com/security/cve/cve-2026-21924
Patch
https://www.oracle.com/security-alerts/cpujan2026.html
Share on: