CVE-2024-21167 | Oracle Trading Community up to 12.2.13 Party Search UI improper authorization

Inserito da Angelo Barbosa | Lug 17, 2024 | CVE

A vulnerability was found in Oracle Trading Community up to 12.2.13. It has been classified as critical. Affected is an unknown function of the component Party Search UI. The manipulation leads to improper authorization.

This vulnerability is traded as CVE-2024-21167. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21167 | Oracle Trading Community up to 12.2.13 Party Search UI improper authorization

Post correlati

CVE-2024-8549 | Simple Calendar Plugin up to 3.4.2 on WordPress cross site scripting

CVE-2024-43356 | bobbingwide oik Plugin up to 4.12.0 on WordPress cross-site request forgery

CVE-2024-5220 | ND Shortcodes Plugin up to 7.5 on WordPress cross site scripting

CVE-2024-25452 | Axiomatic Bento4 1.6.0-640 AP4_UrlAtom::AP4_UrlAtom resource consumption