CVE-2026-35253

MEDIUM

4.7

Beschreibung

Vulnerability in the Oracle Macoron Tool product of Oracle Open Source Projects. The supported versions that is affected is v0.22.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Macaron Tool. Successful attacks of this vulnerability can result in Oracle Macaron Tool failing host address validation.

CVE Details

CVSS v3.1 Bewertung4.7

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

AngriffsvektorNETWORK

KomplexitatLOW

Erforderliche PrivilegienNONE

BenutzerinteraktionREQUIRED

Veroffentlicht5/6/2026

Zuletzt geandert5/6/2026

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

oracle:macoron

Schwachen (CWE)

CWE-601

Referenzen

https://www.oracle.com/security-alerts/all-oracle-cves-outside-other-oracle-public-documents.html(secalert_us@oracle.com)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.