CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-2769

Vulnerability in the Hyperion Financial Reporting product of Oracle Hyperion (component: Web Based Report Designer). The supported version that is affected is 11.1.2.4. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Financial Reporting. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Hyperion Financial Reporting accessible data. CVSS 3.0 Base Score 2.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:N).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.4%

CVSS Severity

CVSS v3 Score 2.4

CVSS v2 Score 3.5

References

https://www.oracle.com/security-alerts/cpuapr2020.html
https://www.oracle.com/security-alerts/cpuapr2020.html

Products affected by CVE-2020-2769

Oracle » Hyperion Financial Reporting » Version: 11.1.2.4

cpe:2.3:a:oracle:hyperion_financial_reporting:11.1.2.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-2769

Products

Pricing

Contact Us