CVE-2024-21098
CVSS 3.1 Score 3.7 of 10 (low)
Details
Summary
CVE-2024-21098 is a vulnerability affecting Oracle GraalVM for JDK (versions: 17.0.10, 21.0.2, 22) and Oracle GraalVM Enterprise Edition (versions: 20.3.13, 21.3.9). This issue lies in the Oracle Java SE component's Compiler and can be exploited by unauthenticated attackers with network access using multiple protocols. Successful exploitation may result in a partial denial of service (DOS) for Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition. With a base score of 3.7 in terms of availability impact, this vulnerability is considered difficult to exploit but still poses a potential threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions