Oracle E-Business Suite SSRF (CVE-2018-3167)

Description

Due to insecure handling of XML DTD, Oracle EBS lcmServiceController script allows remote attackers to interact with internal network resources via Blind Server Side Request Forgery (SSRF).

Remediation

Upgrade to the latest version of Oracle E-Business Suite

References

Oracle Critical Patch Update Advisory - October 2018

Related Vulnerabilities

WordPress Plugin PhonePe Payment Solutions Server-Side Request Forgery (1.0.15)

Oracle E-Business Suite SSRF (CVE-2017-10246)

WordPress Plugin All-in-One Video Gallery Multiple Vulnerabilities (2.6.0)

Oracle Weblogic WLS-WSAT Component Deserialization RCE

Apache Unomi MVEL RCE (CVE-2020-13942)

Severity

Medium

Classification

CVE-2018-3167 CWE-918 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N