BID:106611

Oracle Transportation Management CVE-2019-2487 Remote Security Vulnerability

CVE-2019-2487 |

Info

Oracle Transportation Management CVE-2019-2487 Remote Security Vulnerability

Bugtraq ID:	106611
Class:	Unknown
CVE:	CVE-2019-2487
Remote:	Yes
Local:	No
Published:	Jan 15 2019 12:00AM
Updated:	Jan 15 2019 12:00AM
Credit:	Oracle
Vulnerable:	Oracle Transportation Management 6.4.2 Oracle Transportation Management 6.4.1 Oracle Transportation Management 6.4.3 Oracle Transportation Management 6.3.7

Not Vulnerable:

Discussion

Oracle Transportation Management CVE-2019-2487 Remote Security Vulnerability

Oracle Transportation Management is prone to a remote security vulnerability.

The vulnerability can be exploited over the 'HTTP' protocol. The 'UI Infrastructure' component is affected.

This vulnerability affects the following supported versions:
6.3.7, 6.4.1, 6.4.2, 6.4.3

Exploit / POC

Oracle Transportation Management CVE-2019-2487 Remote Security Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

Oracle Transportation Management CVE-2019-2487 Remote Security Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

References

Oracle Transportation Management CVE-2019-2487 Remote Security Vulnerability

References:

Oracle Homepage (Oracle)
Oracle Critical Patch Update Advisory - January 2019 (Oracle)