.. / CVE-2022-21587

Exploit for Oracle E-Business Suite 12.2.3 -12.2.11 - Remote Code Execution (CVE-2022-21587)

Description:

Oracle E-Business Suite 12.2.3 through 12.2.11 is susceptible to remote code execution via the Oracle Web Applications Desktop Integrator product, Upload component. An attacker with HTTP network access can execute malware, obtain sensitive information, modify data, and/or gain full control over a compromised system without entering necessary credentials.

Nuclei Template

View the template here CVE-2022-21587.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2022/CVE-2022-21587.yaml

References:

http://packetstormsecurity.com/files/171208/Oracle-E-Business-Suite-EBS-Unauthenticated-Arbitrary-File-Upload.html
https://www.oracle.com/security-alerts/cpuoct2022.html
https://nvd.nist.gov/vuln/detail/CVE-2022-21587
https://github.com/manas3c/CVE-POC
https://blog.viettelcybersecurity.com/cve-2022-21587-oracle-e-business-suite-unauth-rce/

.. / CVE-2022-21587 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Oracle E-Business Suite 12.2.3 -12.2.11 - Remote Code Execution (CVE-2022-21587)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2022-21587