cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-2435,https://securityvulnerability.io/vulnerability/CVE-2021-2435,Unauthenticated Access Vulnerability in Oracle Essbase Analytic Provider Services,"This vulnerability in Oracle Essbase Analytic Provider Services allows an unauthenticated attacker to exploit the system via HTTP. Although it requires human interaction for successful attacks, it can lead to unauthorized creation, deletion, or modification of critical data. Overall, it poses significant risks, as attackers may gain complete access to sensitive information crucial to Essbase services.",Oracle,Hyperion Analytic Provider Services,8.1,HIGH,0.0020699999295175076,false,,false,false,false,,,false,false,,2021-07-20T22:44:44.000Z,0
CVE-2021-2433,https://securityvulnerability.io/vulnerability/CVE-2021-2433,Denial of Service Vulnerability in Oracle Essbase Analytic Provider Services,"A vulnerability exists in the Essbase Analytic Provider Services of Oracle Essbase, specifically within its Web Services component. The flaw allows unauthenticated attackers with network access via HTTP to exploit the service, leading to a potential denial of service. Successful exploitation may cause the service to hang or crash, resulting in significant disruption. The affected versions include 11.1.2.4 and 21.2, emphasizing the need for administrators to apply necessary updates and mitigate risks.",Oracle,Hyperion Analytic Provider Services,7.5,HIGH,0.0009500000160187483,false,,false,false,false,,,false,false,,2021-07-20T22:44:42.000Z,0
CVE-2021-2244,https://securityvulnerability.io/vulnerability/CVE-2021-2244,Vulnerability in Oracle Hyperion and Essbase Analytic Provider Services,"A vulnerability exists in Oracle's Hyperion Analytic Provider Services and Essbase Analytic Provider Services, specifically in the JAPI component. This weakness permits an unauthenticated attacker with network access to take control of the affected services. Exploitation of this vulnerability requires human interaction from an external user and may have wider implications for other connected Oracle products. Given its nature, successful exploitation can lead to significant unauthorized access, affecting confidentiality, integrity, and availability of the services.",Oracle,Hyperion Analytic Provider Services,10,CRITICAL,0.07487999647855759,false,,false,false,false,,,false,false,,2021-04-22T21:53:55.000Z,0
CVE-2020-14768,https://securityvulnerability.io/vulnerability/CVE-2020-14768,Vulnerability in Hyperion Analytic Provider Services by Oracle,"The vulnerability present in Oracle's Hyperion Analytic Provider Services enables low privileged attackers with physical access to potentially compromise the service. Exploitation necessitates human interaction from a third party, allowing for unauthorized updates, inserts, and deletions of data, as well as unauthorized read access. Attackers may also be able to inflict partial denial of service (partial DoS) on the service. Mitigation is essential to protect against potential data breaches and service disruptions.",Oracle,Hyperion Analytic Provider Services,4.3,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2020-10-21T14:04:24.000Z,0