CVE-2024-21175

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 16, 2024

Updated: Jul 19, 2024

Summary

CVE-2024-21175 is a vulnerability affecting Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0 of Oracle Fusion Middleware. This issue allows unauthenticated attackers, with network access via HTTP, to easily compromise the Oracle WebLogic Server. Successfully exploited vulnerabilities can grant an attacker unauthorized access to modify or delete critical data or access all Oracle WebLogic Server data. The Integrity impact of this vulnerability is rated high with a CVSS 3.1 Base Score of 7.5.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle WebLogic Server

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xDgOpA
https://www.cve.org/CVERecord?id=CVE-2024-21175
https://nvd.nist.gov/vuln/detail/CVE-2024-21175

Back to Vulnerability Database