CVE-2024-21192

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Oct 15, 2024

Updated: Oct 18, 2024

Summary

CVE-2024-21192 is a newly discovered vulnerability affecting Oracle Enterprise Manager for Fusion Middleware's WebLogic component, specifically version 12.2.1.4.0. This issue allows high-privileged attackers to gain unauthorized access to critical data or complete access to all data managed by Oracle Enterprise Manager for Fusion Middleware. The vulnerability is easily exploitable, and successful attacks can lead to significant confidentiality impacts. The attacker must first log into the infrastructure where the Oracle Enterprise Manager for Fusion Middleware is executed to exploit this vulnerability. According to the Common Vulnerability Scoring System (CVSS), this vulnerability has a base score of 4.4.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Oracle Fusion Middleware

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Predator Still Active, with New Client and Corporate Links Identified

Know What Matters

For Customers

For Partners