Vulnerability in the Siebel Core - Server Framework component of Oracle Siebel CRM (subcomponent: Search). Supported versions that are affected are 19.0 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel Core - Server Framework. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Siebel Core - Server Framework, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Siebel Core - Server Framework accessible data as well as unauthorized read access to a subset of Siebel Core - Server Framework accessible data. CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).
Metrics
Affected Vendors & Products
References
History
Tue, 01 Oct 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: oracle
Published: 2019-07-23T22:31:45
Updated: 2024-10-01T16:42:35.299Z
Reserved: 2018-12-14T00:00:00
Link: CVE-2019-2777

Updated: 2024-08-04T19:03:42.204Z

Status : Modified
Published: 2019-07-23T23:15:40.803
Modified: 2024-11-21T04:41:32.500
Link: CVE-2019-2777

No data.