CVE-2022-21354 : Exploit Details and Defense Strategies
Discover the details of CVE-2022-21354 affecting Oracle iStore in E-Business Suite versions 12.2.3 to 12.2.11. Learn about the potential unauthorized access risks and the necessary mitigation steps.
A vulnerability has been identified in the Oracle iStore product of Oracle E-Business Suite, specifically in the User Interface component. This CVE-2022-21354 affects versions 12.2.3 to 12.2.11, allowing an unauthenticated attacker to compromise Oracle iStore through HTTP network access. The impact of this vulnerability can lead to unauthorized access to sensitive data within Oracle iStore, potentially affecting additional products as well.