CVE-2024-21281

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Oct 15, 2024

Summary

CVE-2024-21281 is a vulnerability affecting version 14.7.0.6.0 of the Oracle Banking Liquidity Management product within Oracle Financial Services Applications. This vulnerability can be exploited by high-privileged attackers with network access via HTTP, requiring human interaction from a separate individual for successful exploitation. The potential consequences of successful attacks include unauthorized creation, deletion, modification of critical data, and limited read access to certain data, as well as the ability to cause a partial denial of service on the affected system. The CVSS 3.1 Base Score for this vulnerability is 5.3, indicating medium severity with high integrity impact and low confidentiality impact. Remediation steps involve applying patches or updates provided by Oracle to mitigate the risks associated with this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2024-21281

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations