CVE-2024-21066

CVSS 3.1 Score 4.2 of 10 (medium)

Details

Published Apr 16, 2024

Updated: Apr 17, 2024

Summary

CVE-2024-21066 is a newly identified vulnerability affecting Oracle Database Server's RDBMS component. This issue impacts versions 19.3-19.22 and 21.3-21.13. A high privileged attacker with Authenticated User access can exploit this easily exploitable flaw, leading to unauthorized access to critical data or complete access to all RDBMS-accessible data. Successful exploitation requires human interaction, making it more challenging for automated attacks. The Base Score in the CVSS 3.1 rating is 4.2, indicating a moderate level of Confidentiality risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vbkyW_
https://www.cve.org/CVERecord?id=CVE-2024-21066
https://nvd.nist.gov/vuln/detail/CVE-2024-21066

Back to Vulnerability Database

CVE-2024-21066

CVSS 3.1 Score 4.2 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations