Oracle E-Business Suite CVE-2018-2934 Remote Security Vulnerability

Bugtraq ID:	104836
Class:	Unknown
CVE:	CVE-2018-2934
Remote:	Yes
Local:	No
Published:	Jul 17 2018 12:00AM
Updated:	Jul 17 2018 12:00AM
Credit:	Lokesh Sharma
Vulnerable:	Oracle E-Business Suite 12.1.3
Not Vulnerable:

Oracle E-Business Suite CVE-2018-2934 Remote Security Vulnerability

Oracle E-Business Suite is prone to a remote security vulnerability in 'Oracle Application Object Library' product.

This vulnerability affects the 'Attachments / File Upload' component and can be exploited over the 'HTTP' protocol.

This vulnerability affects the following supported versions:
12.1.3

Oracle E-Business Suite CVE-2018-2934 Remote Security Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Oracle E-Business Suite CVE-2018-2934 Remote Security Vulnerability

References:

• Oracle Homepage (Oracle)
  
• Oracle Critical Patch Update Advisory - July 2018 (Oracle)