CVE-2024-21182

Summary

CVE-2024-21182 is a vulnerability affecting Oracle WebLogic Server versions 12.2.1.4.0 and 14.1.1.0.0 of the Oracle Fusion Middleware. This issue is classified as easily exploitable and allows unauthenticated attackers, with network access via T3 and IIOP, to compromise the server. Successful exploitation can grant an attacker unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data. The Base Score of this vulnerability, according to the Common Vulnerability Scoring System (CVSS), is 7.5 for Confidentiality impacts. Attackers can exploit this vulnerability without any authentication and with low access complexity.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.