CVSS 3.1 Score 7.4 of 10 (high)


Published Jan 16, 2024
Updated: Jan 23, 2024


CVE-2023-21901 is a vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications. This vulnerability affects supported versions 8.0.7, 8.0.8, 8.0.9, 8.1.0, 8.1.1, and 8.1.2. It can be easily exploited by a low privileged attacker with network access via HTTP, potentially compromising the infrastructure of Oracle Financial Services Analytical Applications and impacting other products as well. Successful attacks could result in unauthorized access to data, including the ability to modify or delete data, as well as causing partial denial of service (DOS) incidents. The base severity of this vulnerability is rated as HIGH with a score of 7.4 out of 10 according to the Common Vulnerability Scoring System (CVSS).

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-21901 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options