CVE-2023-22122

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Oct 17, 2023
Updated: Oct 23, 2023

Summary

CVE-2023-22122 is a vulnerability affecting Oracle Banking Trade Finance in versions 14.5-14.7 of Oracle Financial Services Applications. This issue, located in the product's infrastructure, allows a low-privileged attacker with network access to compromise the system via HTTP. Successful exploitation requires human interaction, and potential consequences include unauthorized access to critical data, complete access to Oracle Banking Trade Finance data, and the ability to update, insert, or delete select data, along with a partial denial of service. The CVSS Base Score is 5.9, with impacts on Confidentiality, Integrity, and Availability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share