CVE-2024-21026
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Summary
CVE-2024-21026 is a vulnerability affecting the Oracle Complex Maintenance, Repair, and Overhaul component of Oracle E-Business Suite (versions 12.2.3 to 12.2.13). This issue allows unauthenticated attackers, with network access via HTTP, to compromise the system by exploiting easily exploitable flaws. Successful attacks require interaction from a targeted individual and can result in unauthorized data manipulation and unauthorized read access to a subset of data within Oracle Complex Maintenance, Repair, and Overhaul. The impacted data may also affect other products, and the CVSS Base Score is 6.1 for Confidentiality and Integrity.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Oracle Complex Maintenance, Repair, And Overhaul
Affected Vendors
- BonqDAO