CVE-2024-21283
CVSS 3.1 Score 8.1 of 10 (high)
Details
Summary
CVE-2024-21283 is a vulnerability affecting the Oracle PeopleSoft Enterprise HCM Global Payroll Core product, specifically in versions 9.2.48 to 9.2.50. This vulnerability allows low-privileged attackers with network access via HTTP to gain unauthorized access to sensitive data and perform actions such as creating, deleting, or modifying critical data within the system. The CVSS score for this vulnerability is 8.1, indicating high severity with significant impacts on confidentiality and integrity. Organizations using the affected versions are advised to apply security patches provided by Oracle to mitigate these risks. Failure to remediate this vulnerability could lead to severe data breaches and loss of sensitive information within an organization’s payroll system.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.