Vulnerabilities > CVE-2021-35689 - Unspecified vulnerability in Oracle Talent Acquisition Cloud

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

oracle

critical

NVD

Published: 2022-02-24

Updated: 2022-03-02

Summary

A potential vulnerability in the Oracle Talent Acquisition Cloud - Taleo Enterprise Edition. This high severity potential vulnerability allows attackers to perform remote code execution on Taleo Enterprise Edition system. Successful attacks of this vulnerability can result in unauthorized remote code execution within Taleo Enterprise Edition and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Talent Acquisition Cloud - Taleo Enterprise Edition. All affected customers were notified of CVE-2021-35689 by Oracle.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Talent Acquisition Cloud -	1

References

https://www.oracle.com/security-alerts/oracle-cves-outside-other-oracle-public-documents.html