CNNVD-202601-3151 Information
CNNVD ID
CNNVD-202601-3151
Related CVE
- CNNVD Published: 2026-01-20
Description (Chinese)
Oracle E-Business Suite是美国甲骨文(Oracle)公司的一套全面集成式的全球业务管理软件。该软件提供了客户关系管理、服务管理、财务管理等功能。 Oracle E-Business Suite的Oracle Configurator 12.2.3版本至12.2.15版本存在安全漏洞,该漏洞源于未经验证的攻击者可通过HTTP网络访问进行攻击,可能导致未经授权的数据读取。
Description (English)
Oracle E-Business Suite is a fully integrated global business management software package for Oracle. The software provides functions such as customer relationship management, service management and financial management. There is a security loophole in Oracle E-Business Suite, versions 12.2.3 to 12.2.15, which originates from an uncertified attacker ’ s access to the HTTP network, which may lead to unauthorized data access.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
甲骨文
Published
2026-01-20
Last Modified
2026-02-24
References
https://access.redhat.com/security/cve/cve-2026-21972 https://www.oracle.com/security-alerts/cpujan2026.html
Patch
https://www.oracle.com/security-alerts/cpujan2026.html
Share on: