Security News > 2024 > November > Oracle Warns of Agile PLM Vulnerability Currently Under Active Exploitation

Oracle Warns of Agile PLM Vulnerability Currently Under Active Exploitation
2024-11-20 04:24

Oracle is warning that a high-severity security flaw impacting the Agile Product Lifecycle Management (PLM) Framework has been exploited in the wild. The vulnerability, tracked as CVE-2024-21287 (CVSS score: 7.5), could be exploited sans authentication to leak sensitive information. "This vulnerability is remotely exploitable without authentication, i.e., it may be exploited over a network


News URL

https://thehackernews.com/2024/11/oracle-warns-of-agile-plm-vulnerability.html

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2024-11-18 CVE-2024-21287 Incorrect Authorization vulnerability in Oracle Agile Product Lifecycle Management 9.3.6
Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain (component: Software Development Kit, Process Extension).
network
low complexity
oracle CWE-863
7.5
7.5

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Oracle 698 249 2225 1709 367 4550