CVE-2024-21078

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Apr 16, 2024

Updated: Apr 17, 2024

Summary

CVE-2024-21078 is a vulnerability affecting the Oracle Marketing component of Oracle E-Business Suite, specifically versions 12.2.3 to 12.2.13. This issue is considered easily exploitable, allowing unauthenticated attackers with network access via HTTP to compromise Oracle Marketing. The consequences of a successful exploit can range from unauthorized access to critical data to complete access to all Oracle Marketing data. The CVSS Base Score is 7.5, indicating a high level of risk for confidentiality impacts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle Marketing

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vbkGBL
https://www.cve.org/CVERecord?id=CVE-2024-21078
https://nvd.nist.gov/vuln/detail/CVE-2024-21078

Back to Vulnerability Database