CVE-2019-2616 - Oracle BI Publisher Unauthorized Access Vulnerability
Project:Oracle
Product:BI Publisher (Formerly XML Publisher)
Date Added:2022-03-25Due Date:2022-04-15
Vulnerability Name
Oracle BI Publisher Unauthorized Access Vulnerability
Description
Oracle BI Publisher, formerly XML Publisher, contains an unspecified vulnerability that allows for various unauthorized actions. Open-source reporting attributes this vulnerability to allowing for authentication bypass.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-2616