Oracle E-Business Suite Scripting Component Scripting Admin Unauthenticated Data Access Vulnerability

A vulnerability exists in the Oracle Scripting product of Oracle E-Business Suite, specifically in the Scripting Admin component. This issue affects versions 12.2.3 through 12.2.15. The vulnerability allows an unauthenticated attacker with network access via HTTP to compromise Oracle Scripting. Exploitation of this vulnerability requires human interaction from a third party. While the vulnerability is contained within Oracle Scripting, successful attacks could significantly impact additional products. Exploiting this vulnerability could lead to unauthorized read access to certain Oracle Scripting data, as well as unauthorized update, insert, or delete access to other accessible data.

Impact

Exploitation of this vulnerability could result in unauthorized access to read, update, insert, or delete certain data within Oracle Scripting.