Description
Vulnerability in the Oracle HTTP Server component of Oracle Fusion Middleware (subcomponent: Web Listener). Supported versions that are affected are 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle HTTP Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle HTTP Server. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).
Remediation
References
Related Vulnerabilities
WordPress Plugin Comments-wpDiscuz SQL Injection (5.3.5)
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2021-33327)
WebLogic CVE-2022-21564 Vulnerability (CVE-2022-21564)
WordPress Plugin WP Fastest Cache Cross-Site Request Forgery (0.8.3.4)
Oracle Application Server Other Vulnerability (CVE-2007-0283)