CVE-2018-16954 is a vulnerability in Oracle Webcenter Interaction
Published on September 18, 2018

An issue was discovered in Oracle WebCenter Interaction Portal 10.3.3. The login function of the portal is vulnerable to insecure redirection (also called an open redirect). The in_hi_redirect parameter is not validated by the application after a successful login. NOTE: this CVE is assigned by MITRE and isn't validated by Oracle because Oracle WebCenter Interaction Portal is out of support.

NVD

Products Associated with CVE-2018-16954

Want to know whenever a new CVE is published for Oracle Webcenter Interaction? stack.watch will email you.

Oracle Webcenter Interaction

Exploit Probability

EPSS

0.16%

Percentile

36.35%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-16954 is a vulnerability in Oracle Webcenter InteractionPublished on September 18, 2018

Products Associated with CVE-2018-16954

Exploit Probability

CVE-2018-16954 is a vulnerability in Oracle Webcenter Interaction
Published on September 18, 2018