CVE-2019-2616: Oracle BI Publisher Unauthorized Access Vulnerability.
Oracle BI Publisher Unauthorized Access Vulnerability. Oracle BI Publisher, formerly XML Publisher, contains an unspecified vulnerability that allows for various unauthorized actions. Open-source reporting attributes this vulnerability to allowing for authentication bypass.
- CISA KEV-listed (remediation due 2022-04-15)
- EPSS 94.0% (99.9% percentile)