CVE-2024-21040 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution

Inserito da Angelo Barbosa | Apr 17, 2024 | CVE

A vulnerability was found in Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13. It has been classified as critical. Affected is an unknown function of the component LOV. The manipulation leads to Remote Code Execution.

This vulnerability is traded as CVE-2024-21040. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21040 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution

Post correlati

CVE-2024-34761 | WPENGINE Advanced Custom Fields Pro Plugin up to 6.2.9 on WordPress code injection

CVE-2024-32765 | QNAP QTS/QuTS hero prior 5.1.8.2823 Build 20240712 Network / Virtual Switch reliance on ip address for authentication (qsa-24-14)

CVE-2024-42626 | FrogCMS 0.9.5 /admin/ cross-site request forgery

CVE-2024-37416 | J.N. Breetvelt WP Photo Album Plus Plugin up to 8.8.00.002 on WordPress cross site scripting