How severe is CVE-2019-2927?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.4 out of 10.

What type of vulnerability is CVE-2019-2927?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2019-2927

MEDIUM Year: 2019

CVSS v3 Score

6.4

Medium

CVSS v2 Score

4.6

Medium

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Vulnerability in the Hyperion Data Relationship Management product of Oracle Hyperion (component: Access and Security). The supported version that is affected is 11.1.2.4. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Hyperion Data Relationship Management. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Hyperion Data Relationship Management. CVSS 3.0 Base Score 6.4 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H).

CVE-2016-3115

MEDIUM

CVSS:6.4(Medium)

Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, rel...

NVD-CWE-Other2016

CVE-2016-3116

MEDIUM

CVSS:6.4(Medium)

CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data.

NVD-CWE-Other2016

CVE-2016-3420

MEDIUM

CVSS:6.4(Medium)

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.1.1, 9.3.1.2, 9.3.2, and 9.3.3 allows remote authenticated users to affect confidentiality and int...

NVD-CWE-Other2016

CVE-2016-3431

MEDIUM

CVSS:6.4(Medium)

NVD-CWE-Other2016

CVE-2016-3572

MEDIUM

CVSS:6.4(Medium)

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote authenticated users to a...

NVD-CWE-Other2016

CVE-2016-5454

MEDIUM

CVSS:6.4(Medium)

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and availability via vectors related to Verified Boot.

NVD-CWE-Other2016

CVE-2019-2927

Vulnerability Description

Related Vulnerabilities

CVE-2016-3115

CVE-2016-3116

CVE-2016-3420

CVE-2016-3431

CVE-2016-3572

CVE-2016-5454