Unrated severityNVD Advisory· Published Oct 15, 2024· Updated Oct 16, 2024
CVE-2024-21192
CVE-2024-21192
Description
Vulnerability in the Oracle Enterprise Manager for Fusion Middleware product of Oracle Fusion Middleware (component: WebLogic Mgmt). The supported version that is affected is 12.2.1.4.0. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Enterprise Manager for Fusion Middleware executes to compromise Oracle Enterprise Manager for Fusion Middleware. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Enterprise Manager for Fusion Middleware accessible data. CVSS 3.1 Base Score 4.4 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N).
Affected products
2cpe:2.3:a:oracle:enterprise_manager_for_fusion_middleware:12.2.1.4.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:enterprise_manager_for_fusion_middleware:12.2.1.4.0:*:*:*:*:*:*:*range: 12.2.1.4.0
- (no CPE)range: = 12.2.1.4.0
Patches
Vulnerability mechanics
References
1- www.oracle.com/security-alerts/cpuoct2024.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.