Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-57p5-7r24-7vg9

Опубликовано: 17 фев. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 2.7

Описание

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure SEC). Supported versions that are affected are Prior to 9.2.8.0. Easily exploitable vulnerability allows high privileged attacker with network access via JDENET to compromise JD Edwards EnterpriseOne Tools. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of JD Edwards EnterpriseOne Tools. CVSS 3.1 Base Score 2.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L).

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure SEC). Supported versions that are affected are Prior to 9.2.8.0. Easily exploitable vulnerability allows high privileged attacker with network access via JDENET to compromise JD Edwards EnterpriseOne Tools. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of JD Edwards EnterpriseOne Tools. CVSS 3.1 Base Score 2.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L).

Ссылки

EPSS

Процентиль: 22%
0.00072
Низкий

2.7 Low

CVSS3

CVE ID

CVE-2024-20905

Дефекты

CWE-404

Связанные уязвимости

nvd логотип

CVE-2024-20905

CVSS3: 2.7
nvd
почти 2 года назад

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure SEC). Supported versions that are affected are Prior to 9.2.8.0. Easily exploitable vulnerability allows high privileged attacker with network access via JDENET to compromise JD Edwards EnterpriseOne Tools. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of JD Edwards EnterpriseOne Tools. CVSS 3.1 Base Score 2.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L).

fstec логотип

BDU:2024-00463

CVSS3: 2.7
fstec
около 2 лет назад

Уязвимость компонента Enterprise Infrastructure SEC системы управления ресурсами предприятия JD Edwards EnterpriseOne Tools, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 22%
0.00072
Низкий

2.7 Low

CVSS3

CVE ID

CVE-2024-20905

Дефекты

CWE-404