CVE-2024-21077

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 16, 2024

Updated: Apr 17, 2024

Summary

CVE-2024-21077 is a vulnerability affecting the Oracle Trade Management component of Oracle E-Business Suite (versions 12.2.3-12.2.13). This easily exploitable issue allows unauthenticated attackers, with network access via HTTP, to compromise Oracle Trade Management. The consequences of successful attacks can range from unauthorized access to critical data to full access to all Oracle Trade Management data. The vulnerability has a CVSS 3.1 Base Score of 7.5 (High) for confidentiality impacts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vbkGBb
https://www.cve.org/CVERecord?id=CVE-2024-21077
https://nvd.nist.gov/vuln/detail/CVE-2024-21077

Back to Vulnerability Database

CVE-2024-21077

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations