Oracle warns of Agile PLM file disclosure flaw exploited in attacks

2024-11-19 19:56

Oracle has fixed an unauthenticated file disclosure flaw in Oracle Agile Product Lifecycle Management (PLM) tracked as CVE-2024-21287, which was actively exploited as a zero-day to download files. [...]

News URL

https://www.bleepingcomputer.com/news/security/oracle-warns-of-agile-plm-file-disclosure-flaw-exploited-in-attacks/

#agile #attack #disclosure #oracle #CVE-2024-21287

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-18	CVE-2024-21287	Incorrect Authorization vulnerability in Oracle Agile Product Lifecycle Management 9.3.6 Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Software Development Kit, Process Extension). network low complexity oracle CWE-863	7.5

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Oracle		698	249	2225	1709	366	4549

News URL

Related news

Related Vulnerability

Related vendor