Lucene search

OracleCVELIST:CVE-2024-20979

HistoryJan 16, 2024 - 9:41 p.m.

CVE-2024-20979

2024-01-1621:41:24

oracle

www.cve.org

cve vulnerability disclosure

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

AI Score

6.2

Confidence

High

EPSS

Percentile

14.0%

JSON

CNA Affected

[
  {
    "vendor": "Oracle Corporation",
    "product": "BI Publisher (formerly XML Publisher)",
    "versions": [
      {
        "version": "6.4.0.0.0",
        "status": "affected"
      },
      {
        "version": "7.0.0.0.0",
        "status": "affected"
      },
      {
        "version": "12.2.1.4.0",
        "status": "affected"
      }
    ]
  }
]

References

www.oracle.com/security-alerts/cpujan2024.html