CVE-2024-21031

Summary

CVE-2024-21031 is a vulnerability affecting the Oracle Complex Maintenance, Repair, and Overhaul component of Oracle E-Business Suite, specifically versions 12.2.3 to 12.2.13. This issue allows unauthenticated attackers with network access to compromise the Oracle Complex Maintenance, Repair, and Overhaul system. Successful attacks require interaction from a human target and may lead to significant impacts on other affected products. The vulnerability enables attackers to gain unauthorized access to update, insert, or delete some data, as well as unauthorized read access to a subset of the data. The Base Score of the Common Vulnerability Scoring System (CVSS) version 3.1 is 6.1, with impacts on confidentiality and integrity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.