CVE-2024-21192

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Oct 15, 2024

Summary

CVE-2024-21192 is a vulnerability affecting the Oracle Enterprise Manager for Fusion Middleware, specifically in version 12.2.1.4.0 of Oracle Fusion Middleware's WebLogic Management component. This vulnerability allows a high-privileged attacker with logon access to compromise the system, potentially leading to unauthorized access to critical data within the Oracle Enterprise Manager. The CVSS 3.1 Base Score for this vulnerability is 4.4, indicating a medium severity level with a high confidentiality impact and low attack complexity. To remediate this issue, organizations are advised to apply available security patches from Oracle as outlined in their security alerts. If exploited, this vulnerability poses significant risks to data integrity and confidentiality within affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database