CVE-2020-2888 is a vulnerability in Oracle Marketing
Published on April 15, 2020
Vulnerability in the Oracle Marketing product of Oracle E-Business Suite (component: Partners). Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Marketing. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Marketing accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).
Products Associated with CVE-2020-2888
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-2888 are published in Oracle Marketing:
Affected Versions
Oracle Corporation Marketing:- Version 12.1.1-12.1.3 is affected.
- Version 12.2.3-12.2.9 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.