CVE-2023-22124

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Oct 17, 2023
Updated: Oct 23, 2023

Summary

CVE-2023-22124 is a vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications, affecting versions 14.5-14.7. This vulnerability can be easily exploited by a low privileged attacker with network access via HTTP, allowing them to compromise Oracle Banking Trade Finance. The successful exploitation of this vulnerability may lead to unauthorized update, insert or delete access to some of the accessible data, as well as unauthorized read access to a subset of the data. While the main impact is on Oracle Banking Trade Finance, other products may also be significantly affected. The CVSS 3.1 Base Score for this vulnerability is 5.4, indicating medium severity with impacts on confidentiality and integrity. Remediation measures should be taken promptly to mitigate the risk posed by this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-22124 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options