CVE-2024-20910

CVSS 3.1 Score 3.0 of 10 (low)

Details

Published Jan 16, 2024
Updated: Jan 23, 2024

Summary

CVE-2024-20910 is a vulnerability affecting Oracle Audit Vault and Database Firewall's Firewall component, with versions 20.1-20.9 being vulnerable. This issue allows high-privileged attackers with network access via Oracle Net to compromise the security solution. The impact extends beyond Oracle Audit Vault and Database Firewall, potentially affecting other products as well. Successfully exploited vulnerabilities may grant unauthorized read access to a subset of the affected data, posing a confidentiality risk. The CVSS Base Score is 3.0, with a vector of (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N).

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share