What is the severity of CVE-2017-10417?

CVE-2017-10417 has a high severity level due to its potential for easy exploitation by unauthenticated attackers.

How do I fix CVE-2017-10417?

To mitigate CVE-2017-10417, it is recommended to apply the latest security patches provided by Oracle for the affected versions.

Which versions of Oracle Advanced Outbound Telephony are affected by CVE-2017-10417?

CVE-2017-10417 affects Oracle Advanced Outbound Telephony versions 12.2.3, 12.2.4, 12.2.5, 12.2.6, and 12.2.7.

What type of vulnerability is CVE-2017-10417?

CVE-2017-10417 is categorized as an easily exploitable vulnerability that allows unauthorized access and actions.

Can CVE-2017-10417 be exploited remotely?

Yes, CVE-2017-10417 can be exploited remotely by an unauthenticated attacker with network access.

Vulnerability/
CVE-2017-10417

high

8.2

19/10/2017

4/10/2024

CVE-2017-10417

First published: Thu Oct 19 2017(Updated: )

Vulnerability in the Oracle Advanced Outbound Telephony component of Oracle E-Business Suite (subcomponent: Setup and Configuration). Supported versions that are affected are 12.2.3, 12.2.4, 12.2.5, 12.2.6 and 12.2.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Advanced Outbound Telephony. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Advanced Outbound Telephony, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Advanced Outbound Telephony accessible data as well as unauthorized update, insert or delete access to some of Oracle Advanced Outbound Telephony accessible data. CVSS 3.0 Base Score 8.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N).

Credit: secalert_us@oracle.com

Affected Software	Affected Version	How to fix
Oracle Advanced Outbound Telephony	=12.2.3
Oracle Advanced Outbound Telephony	=12.2.4
Oracle Advanced Outbound Telephony	=12.2.5
Oracle Advanced Outbound Telephony	=12.2.6
Oracle Advanced Outbound Telephony	=12.2.7

Remedy

http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-10417?
CVE-2017-10417 has a high severity level due to its potential for easy exploitation by unauthenticated attackers.
How do I fix CVE-2017-10417?
To mitigate CVE-2017-10417, it is recommended to apply the latest security patches provided by Oracle for the affected versions.
Which versions of Oracle Advanced Outbound Telephony are affected by CVE-2017-10417?
CVE-2017-10417 affects Oracle Advanced Outbound Telephony versions 12.2.3, 12.2.4, 12.2.5, 12.2.6, and 12.2.7.
What type of vulnerability is CVE-2017-10417?
CVE-2017-10417 is categorized as an easily exploitable vulnerability that allows unauthorized access and actions.
Can CVE-2017-10417 be exploited remotely?
Yes, CVE-2017-10417 can be exploited remotely by an unauthenticated attacker with network access.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/remedy
agent/last-modified-date
agent/severity
agent/references
agent/first-publish-date
agent/event
agent/description
agent/tags
agent/source
vendor/oracle
canonical/oracle advanced outbound telephony
version/oracle advanced outbound telephony/12.2.3
version/oracle advanced outbound telephony/12.2.4
version/oracle advanced outbound telephony/12.2.5
version/oracle advanced outbound telephony/12.2.6
version/oracle advanced outbound telephony/12.2.7