Request a Demo
Rewterz
Rewterz Threat Advisory – Multiple SonicWall SonicOS Vulnerabilities
October 18, 2023
Rewterz
Rewterz Threat Advisory – Multiple WordPress Plugins Vulnerabilities
October 19, 2023

Rewterz Threat Advisory – Multiple Oracle Products Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2023-22126 CVSS:5.3

An unspecified vulnerability in Oracle WebCenter Content related to the Content Server component could allow a remote attacker to cause low confidentiality impact, no integrity impact, and no availability impact.

CVE-2023-22127 CVSS:6.3

An unspecified vulnerability in Oracle Outside In Technology related to the Content Access SDK, Image Export SDK, PDF Export SDK, HTML Export SDK components could allow a remote authenticated attacker to cause low confidentiality impact, low integrity impact, and low availability impact.

CVE-2023-22128 CVSS:3.1

An unspecified vulnerability in Oracle Solaris related to the Filesystem component could allow a remote attacker to obtain sensitive information resulting in a low confidentiality impact using unknown attack vectors.

CVE-2023-22129 CVSS:5.5

An unspecified vulnerability in Oracle Solaris related to the Kernel component could allow a local authenticated attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.

CVE-2023-22130 CVSS:5.9

An unspecified vulnerability in Oracle Sun ZFS Storage Appliance related to the Core component could allow a remote attacker to cause a denial of service resulting in a high availability impact using unknown attack vectors.

CVE-2023-22069

An unspecified vulnerability in Oracle WebLogic Server related to the Core component could allow a remote attacker to cause high confidentiality, integrity and availability impacts.

Impact

  • Denial of Service
  • Gain Access
  • Information Theft

Indicators Of Compromise

CVE

  • CVE-2023-22126
  • CVE-2023-22127
  • CVE-2023-22128
  • CVE-2023-22129
  • CVE-2023-22130
  • CVE-2023-22069

Affected Vendors

Oracle

Affected Products

  • Oracle WebCenter Content 12.2.1.4.0
  • Oracle Outside In Technology 8.5.6
  • Oracle Solaris 11
  • Oracle Solaris 10
  • Oracle Sun ZFS Storage Appliance Kit 8.8.60
  • Oracle WebLogic Server 12.2.1.4.0
  • Oracle WebLogic Server 14.1.1.0.0

Remediation

Refer to Oracle Critical Patch Update Advisory for patch, upgrade or suggested workaround information.

Oracle Critical Patch Update Advisory