HomeVulnerabilityOracle Fusion Middleware Unspecified Vulnerability – CVE-2021-35587

Oracle Fusion Middleware Unspecified Vulnerability – CVE-2021-35587

December 28, 2022
Oracle Fusion Middleware Unspecified Vulnerability – CVE-2021-35587

Release Date – Nov 28, 2022

CVE Details – CVE-2021-35587

Alert Severity – Critical

Affected Products – 

Oracle Fusion Middleware version 11.1.2.3.0, 12.2.1.3.0 and 12.2.1.4.0

*Only supported versions from Oracle

Description –

Oracle Fusion Middleware Access Manager allows an unauthenticated attacker with network access via HTTP to takeover the Access Manager product.

Supported versions that are affected are 11.1.2.3.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Access Manager. Successful attacks of this vulnerability can result in takeover of Oracle Access Manager.

Mitigation/Solution –

Apply the patches available from oracle secure access.

Tags:,

Related Posts

Add a Comment

Your email address will not be published.