How severe is CVE-2023-21824?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2023-21824?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2023-21824 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

Vulnerability in the Oracle Communications BRM - Elastic Charging Engine product of Oracle Communications Applications (component: Customer, Config, Pricing Manager). Supported versions that are affected are 12.0.0.3.0-12.0.0.7.0. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Communications BRM - Elastic Charging Engine executes to compromise Oracle Communications BRM - Elastic Charging Engine. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Communications BRM - Elastic Charging Engine accessible data. CVSS 3.1 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).

Related Vulnerabilities

CVE-2016-0667

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows local users to affect availability via vectors related to Locking.

NVD-CWE-Other2016

CVE-2016-0674

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in the Siebel Core - Common Components component in Oracle Siebel CRM 8.1.1 and 8.2.2 allows local users to affect confidentiality and integrity via vectors related to Email.

NVD-CWE-Other2016

CVE-2016-3480

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 and 4.3 allows local users to affect confidentiality via vectors related to HA for Postgresql.

NVD-CWE-Other2016

CVE-2016-3488

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in the DB Sharding component in Oracle Database Server 12.1.0.2 allows local users to affect integrity via unknown vectors.

NVD-CWE-Other2016

CVE-2016-5584

MEDIUM

CVSS:4.4(Medium)

Unspecified vulnerability in Oracle MySQL 5.5.52 and earlier, 5.6.33 and earlier, and 5.7.15 and earlier allows remote administrators to affect confidentiality via vectors related to Server: Security:...

NVD-CWE-Other2016

CVE-2016-7155

MEDIUM

CVSS:4.4(Medium)

hw/scsi/vmw_pvscsi.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (out-of-bounds access or infinite loop, and QEMU process crash) via a crafted page c...

NVD-CWE-Other2016