← ExploitWatch
HomeExploited Vulnerabilities

CVE-2019-2616 — Actively Exploited: BI Publisher (Formerly XML Publisher) (Oracle)

Oracle BI Publisher, formerly XML Publisher, contains an unspecified vulnerability that allows for various unauthorized actions. Open-source reporting attributes this vulnerability to allowing for authentication bypass.

CVE IDCVE-2019-2616
VendorOracle
ProductBI Publisher (Formerly XML Publisher)
Vulnerability nameOracle BI Publisher Unauthorized Access Vulnerability
Date added2022-03-25
Remediation due2022-04-15
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionOracle BI Publisher, formerly XML Publisher, contains an unspecified vulnerability that allows for various unauthorized actions. Open-source reporting attributes this vulnerability to allowing for authentication bypass.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →