CVE-2024-21014

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Apr 16, 2024
Updated: Apr 17, 2024

Summary

CVE-2024-21014 is a critical vulnerability affecting Oracle Hospitality Simphony, a component of Oracle Food and Beverage Applications. The flaw, which impacts versions 19.1.0 to 19.5.4, allows unauthenticated attackers with network access to compromise the Simphony Enterprise Server. Successfully exploiting this vulnerability could result in a takeover of the Oracle Hospitality Simphony system. The CVSS Base Score is 9.8, indicating high severity for Confidentiality, Integrity, and Availability impacts. Attackers can exploit this easily exploitable vulnerability via HTTP.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share