Vulnerability in the Oracle Communications Session Border Controller product of Oracle Communications (component: Routing). Supported versions that are affected are 8.4 and 9.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Communications Session Border Controller. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Communications Session Border Controller. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
References
Link | Resource |
---|---|
https://www.oracle.com/security-alerts/cpuoct2021.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
26 Oct 2021, 12:08
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:oracle:communications_session_border_controller:9.0:*:*:*:*:*:*:* cpe:2.3:a:oracle:communications_session_border_controller:8.4:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 4.9 |
References | (MISC) https://www.oracle.com/security-alerts/cpuoct2021.html - Vendor Advisory |
20 Oct 2021, 11:53
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-10-20 11:16
Updated : 2024-02-04 22:08
NVD link : CVE-2021-2416
Mitre link : CVE-2021-2416
CVE.ORG link : CVE-2021-2416
JSON object : View
Products Affected
oracle
- communications_session_border_controller
CWE