CVE-2024-21014
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2024-21014 is a critical vulnerability affecting Oracle Hospitality Simphony, a component of Oracle Food and Beverage Applications. The flaw, which impacts versions 19.1.0 to 19.5.4, allows unauthenticated attackers with network access to compromise the Simphony Enterprise Server. Successfully exploiting this vulnerability could result in a takeover of the Oracle Hospitality Simphony system. The CVSS Base Score is 9.8, indicating high severity for Confidentiality, Integrity, and Availability impacts. Attackers can exploit this easily exploitable vulnerability via HTTP.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions