CVE-2024-21181

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 16, 2024

Updated: Jul 19, 2024

Summary

CVE-2024-21181 is a severe vulnerability affecting the Oracle WebLogic Server component of Oracle Fusion Middleware, specifically versions 12.2.1.4.0 and 14.1.1.0.0. This issue allows unauthenticated attackers with network access to take over the Oracle WebLogic Server via T3 or IIOP. The consequences of successful exploitation include significant data confidentiality, integrity, and availability impacts, with a base CVSS score of 9.8. The vulnerability is easily exploited and poses a serious threat to affected systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle WebLogic Server

Affected Vendors

BonqDAO

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xDhBlO
https://www.cve.org/CVERecord?id=CVE-2024-21181
https://nvd.nist.gov/vuln/detail/CVE-2024-21181

Back to Vulnerability Database