CVE-2020-2673 is a vulnerability in Oracle Application Testing Suite
Published on January 15, 2020
Vulnerability in the Oracle Application Testing Suite product of Oracle Enterprise Manager (component: Oracle Flow Builder). Supported versions that are affected are 12.5.0.3, 13.1.0.1, 13.2.0.1 and 13.3.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application Testing Suite. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Application Testing Suite accessible data. CVSS 3.0 Base Score 7.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N).
Products Associated with CVE-2020-2673
Want to know whenever a new CVE is published for Oracle Application Testing Suite? stack.watch will email you.
Affected Versions
Oracle Corporation Application Testing Suite:- Version 12.5.0.3 is affected.
- Version 13.1.0.1 is affected.
- Version 13.2.0.1 is affected.
- Version 13.3.0.1 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.