CNNVD-202601-3153 Information
CNNVD ID
CNNVD-202601-3153
Related CVE
- CNNVD Published: 2026-01-20
Description (Chinese)
Oracle E-Business Suite是美国甲骨文(Oracle)公司的一套全面集成式的全球业务管理软件。该软件提供了客户关系管理、服务管理、财务管理等功能。 Oracle E-Business Suite的Oracle Applications DBA 12.2.3版本至12.2.15版本存在安全漏洞,该漏洞源于高权限攻击者可通过HTTP网络访问进行攻击,可能导致未经授权的数据创建、删除、修改和访问。
Description (English)
Oracle E-Business Suite is a fully integrated global business management software package for Oracle. The software provides functions such as customer relationship management, service management and financial management. The Oracle Applications DBA 12.2.3 to 12.2.15 in Oracle E-Business Suite contains a security loophole, which stems from the fact that high-authority attackers can attack via the HTTP network and may lead to unauthorized data creation, deletion, modification and access.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
甲骨文
Published
2026-01-20
Last Modified
2026-02-24
References
https://access.redhat.com/security/cve/cve-2026-21960 https://www.oracle.com/security-alerts/cpujan2026.html
Patch
https://www.oracle.com/security-alerts/cpujan2026.html
Share on: