CVE-2024-21211
CVSS 3.1 Score 3.7 of 10 (low)
Details
Summary
CVE-2024-21211 is a vulnerability found in Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition, specifically within the Compiler component. Affected versions include Oracle Java SE 23 and Oracle GraalVM for JDK versions 17.0.12, 21.0.4, and 23, along with GraalVM Enterprise Edition versions 20.3.15 and 21.3.11. This vulnerability can be exploited by unauthenticated attackers with network access through various protocols, potentially allowing unauthorized access to modify or delete data within the affected products. To remediate this issue, organizations should update to the latest patches provided by Oracle as specified in their security alerts. Although classified with a low base severity score of 3.7, the complexity of exploitation is high, which may pose risks if left unaddressed in environments utilizing these technologies.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.