Vulnerabilities > CVE-2021-35689 - Unspecified vulnerability in Oracle Talent Acquisition Cloud

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

oracle

NVD

Published: 2022-02-24

Updated: 2022-03-02

Summary

A potential vulnerability in the Oracle Talent Acquisition Cloud - Taleo Enterprise Edition. This high severity potential vulnerability allows attackers to perform remote code execution on Taleo Enterprise Edition system. Successful attacks of this vulnerability can result in unauthorized remote code execution within Taleo Enterprise Edition and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Talent Acquisition Cloud - Taleo Enterprise Edition. All affected customers were notified of CVE-2021-35689 by Oracle.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Talent Acquisition Cloud -	1

References

https://www.oracle.com/security-alerts/oracle-cves-outside-other-oracle-public-documents.html