CVE-2024-20992
CVSS 3.1 Score 4.4 of 10 (medium)
Details
Summary
CVE-2024-20992 is a vulnerability in the Oracle WebCenter Portal product of Oracle Fusion Middleware. The affected version is 12.2.1.4.0. This vulnerability can be exploited by a low privileged attacker with network access via HTTP, but it requires human interaction from someone other than the attacker. Successful attacks can result in unauthorized access to and modification of data in Oracle WebCenter Portal. The confidentiality and integrity of the data are impacted, with a CVSS 3.1 Base Score of 4.4 out of 10. It is important for organizations using this product to apply necessary security patches to remediate this vulnerability and prevent potential unauthorized access and data manipulation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions