Security Misconfiguration

Attackers can take advantage when the security configuration is incorrect or incomplete to obtain unauthorized access to an application. The entire technology stack must be configured properly, and processes should be in place to detect misconfigurations-missing patches, accounts with default passwords, insecure settings in frameworks or libraries, etc.

The Oracle DMW application hosted by Oracle Managed Cloud Services is deployed in a secure hosted environment following Oracle policy and procedures.

Ensure that your on-premise configuration, which makes use of Oracle DMW APIs and views, does not contain opportunities for an attacker to gain unauthorized access to the system. Take care to secure database accounts, files, directories, servers, the network, and other data access channels outside of the API domain.