USU Oracle Optimization before 5.17 allows authenticated quantum users to achieve remote code execution because of /v2/quantum/save-data-upload-big-file Java deserialization. NOTE: this is not an Oracle Corporation product.
References
Link | Resource |
---|---|
https://github.com/orangecertcc/security-research/security/advisories/GHSA-rj5c-j274-vw7g | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-04-29T16:34:47
Updated: 2022-04-29T16:34:47
Reserved: 2022-04-29T00:00:00
Link: CVE-2022-29936
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-29T17:15:23.690
Modified: 2022-05-11T13:27:36.323
Link: CVE-2022-29936
JSON object: View
Redhat Information
No data.
CWE