Thousands of Oracle NetSuite Sites at Risk of Exposing Customer Information
Briefly

from The Hacker News5 months ago
"A potential issue in NetSuite's SuiteCommerce platform could allow attackers to access sensitive data due to misconfigured access controls on custom record types (CRTs)," AppOmni's Aaron Costello said.
The Hacker Newshttps://thehackernews.com/2024/08/thousands-of-oracle-netsuite-sites-at.html
"The easiest solution from a security standpoint may involve changing the Access Type of the record type definition to either 'Require Custom Record Entries Permission' or 'Use Permission List,'" Costello said.
The Hacker Newshttps://thehackernews.com/2024/08/thousands-of-oracle-netsuite-sites-at.html
Read at The Hacker News
#oracle-netsuite #cybersecurity #data-leakage #e-commerce-security #access-control
[
|
]