CVE-2024-21071

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Apr 16, 2024
Updated: Apr 17, 2024

Summary

CVE-2024-21071 is a high-severity vulnerability affecting Oracle E-Business Suite's Oracle Workflow component (version 12.2.3-12.2.13). This issue allows a high-privileged attacker with network access via HTTP to compromise Oracle Workflow, potentially leading to significant impacts on additional products. Successfully exploited vulnerabilities can result in the takeover of Oracle Workflow, posing a threat to confidentiality, integrity, and availability. The CVSS Base Score is 9.1. (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share