March 11, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple SonicWall SonicOS Vulnerabilities
October 18, 2023Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities
October 19, 2023Rewterz Threat Advisory – Multiple SonicWall SonicOS Vulnerabilities
October 18, 2023Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities
October 19, 2023
Severity
Medium
Analysis Summary
CVE-2023-22126 CVSS:5.3
An unspecified vulnerability in Oracle WebCenter Content related to the Content Server component could allow a remote attacker to cause low confidentiality impact, no integrity impact, and no availability impact.
CVE-2023-22127 CVSS:6.3
An unspecified vulnerability in Oracle Outside In Technology related to the Content Access SDK, Image Export SDK, PDF Export SDK, HTML Export SDK components could allow a remote authenticated attacker to cause low confidentiality impact, low integrity impact, and low availability impact.
CVE-2023-22128 CVSS:3.1
An unspecified vulnerability in Oracle Solaris related to the Filesystem component could allow a remote attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.
CVE-2023-22129 CVSS:5.5
An unspecified vulnerability in Oracle Solaris related to the Kernel component could allow a local authenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVE-2023-22130 CVSS:5.9
An unspecified vulnerability in Oracle Sun ZFS Storage Appliance related to the Core component could allow a remote attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.
CVE-2023-22069
An unspecified vulnerability in Oracle WebLogic Server related to the Core component could allow a remote attacker to cause high confidentiality, integrity and availability impacts.
Impact
- Denial of Service
- Gain Access
- Information Theft
Indicators Of Compromise
CVE
- CVE-2023-22126
- CVE-2023-22127
- CVE-2023-22128
- CVE-2023-22129
- CVE-2023-22130
- CVE-2023-22069
Affected Vendors
Oracle
Affected Products
- Oracle WebCenter Content 12.2.1.4.0
- Oracle Outside In Technology 8.5.6
- Oracle Solaris 11
- Oracle Solaris 10
- Oracle Sun ZFS Storage Appliance Kit 8.8.60
- Oracle WebLogic Server 12.2.1.4.0
- Oracle WebLogic Server 14.1.1.0.0
Remediation
Refer to Oracle Critical Patch Update Advisory for patch, upgrade or suggested workaround information.