CVE-2024-21167 | Oracle Trading Community up to 12.2.13 Party Search UI improper authorization

Inserito da Angelo Barbosa | Lug 17, 2024 | CVE

A vulnerability was found in Oracle Trading Community up to 12.2.13. It has been classified as critical. Affected is an unknown function of the component Party Search UI. The manipulation leads to improper authorization.

This vulnerability is traded as CVE-2024-21167. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21167 | Oracle Trading Community up to 12.2.13 Party Search UI improper authorization

Post correlati

CVE-2021-47451 | Linux Kernel up to 5.10.75/5.14.14 Netfilter test denial of service (2a670c323055/cae7cab804c9/902c0b188752)

CVE-2023-52312 | Paddle up to 2.5.x null pointer dereference (dsa-2023-021)

CVE-2024-2556 | SourceCodester Employee Task Management System 1.0 attendance-info.php user_id sql injection

CVE-2023-6833 | Hitachi Ops Center Administrator up to 11.0.0 log file (sec-2024-121)