Critical vulnerability in Oracle Internet Procurement Connector component of Oracle E-Business Suite affecting versions 12.2.3-12.2.15. Easily exploitable flaw allows unauthenticated attackers with network access via HTTP to compromise the system. Successful exploitation can result in unauthorized creation, deletion, or modification of critical data as well as unauthorized access to all accessible data. CVSS score of 9.1 indicates high impact on confidentiality and integrity.