CVE-2024-21168 | Oracle JD Edwards EnterpriseOne Orchestrator up to 9.2.8.2 E1 IOT Orchestrator Security information disclosure

Posted by Angelo Barbosa | Jul 17, 2024 | CVE

A vulnerability was found in Oracle JD Edwards EnterpriseOne Orchestrator up to 9.2.8.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component E1 IOT Orchestrator Security. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-21168. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-21168 | Oracle JD Edwards EnterpriseOne Orchestrator up to 9.2.8.2 E1 IOT Orchestrator Security information disclosure

Related Posts

CVE-2024-44945 | Linux Kernel up to 6.10.6 nfnetlink Privilege Escalation (3e03b536d945/d1a7b382a9d3)

CVE-2024-38580 | Linux Kernel up to 5.15.160/6.1.92/6.6.32/6.8.11 epoll vfs_poll denial of service

CVE-2024-0732 | PCMan FTP Server 2.0.7 STOR Command denial of service

CVE-2024-36404 | GeoTools up to 29.5/30.3/31.1 neutralization of directives (GHSA-w3pj-wh35-fq8w)