cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-21246,https://securityvulnerability.io/vulnerability/CVE-2024-21246,Remote Code Execution Vulnerability in Oracle Service Bus,"A serious vulnerability has been identified in the Oracle Service Bus, specifically within the OSB Core Functionality of Oracle Fusion Middleware version 12.2.1.4.0. This flaw can be easily exploited by an unauthenticated attacker who has network access through HTTP. If successfully executed, this vulnerability could grant the attacker unauthorized access to sensitive and critical data stored within the Oracle Service Bus environment. The potential for complete data access emphasizes the urgent need for organizations using the affected version to implement the recommended security patches to safeguard their data integrity and confidentiality.",Oracle,Oracle Service Bus,7.5,HIGH,0.001019999966956675,false,false,false,false,,false,false,2024-10-15T19:52:49.910Z,0
CVE-2024-21205,https://securityvulnerability.io/vulnerability/CVE-2024-21205,Oracle Fusion Middleware Security Flaw in Service Bus Component,"A vulnerability exists in the Oracle Service Bus component of Oracle Fusion Middleware, specifically in the OSB Core Functionality. This vulnerability affects version 12.2.1.4.0 and can be exploited by an attacker with low privileges and network access through HTTP. If successfully exploited, it could allow the attacker to gain unauthorized access to sensitive data or potentially the entire dataset accessible via the Oracle Service Bus. Organizations using this version are urged to review their security measures and apply patches provided by Oracle to mitigate risks associated with this vulnerability.",Oracle,Oracle Service Bus,6.5,MEDIUM,0.00046999999904073775,false,false,false,false,,false,false,2024-10-15T19:52:39.956Z,0