Severity

Medium

Analysis Summary

CVE-2022-21523

An unspecified vulnerability in Oracle BI Publisher related to the BI Publisher Security component could allow an authenticated attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.

Impact

• Information Disclosure

Indicators Of Compromise

CVE

• CVE-2022-21523

Affected Vendors

Oracle

Affected Products

• Oracle BI Publisher 12.2.1.3.0
• Oracle BI Publisher 12.2.1.4.0

Remediation

Refer to Oracle Security Advisory for patch, upgrade or suggested workaround information

Oracle Security Advisory