The vulnerability of the GL Accounts LOV component of the Oracle Trade Management software, a system for automating business operations within the Oracle E-Business Suite. This vulnerability allows an attacker to gain unauthorized access to protected information.

🗓️ 26 Apr 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Vulnerability in Oracle Trade Management General Ledger Accounts List of Values enables unauthorized access due to input validation flaws.

Reporter	Title	Published	Views	Family All 11
CNNVD	Oracle E-Business Suite 的 Oracle Trade Management 安全漏洞	16 Apr 202400:00	–	cnnvd
CVE	CVE-2024-21077	16 Apr 202421:26	–	cve
Cvelist	CVE-2024-21077	16 Apr 202421:26	–	cvelist
EUVD	EUVD-2024-18791	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Oracle E-Business Suite	18 Apr 202400:00	–	ncsc
NVD	CVE-2024-21077	16 Apr 202422:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - April 2024	16 Apr 202400:00	–	oracle
Tenable Nessus	Oracle E-Business Suite (April 2024 CPU)	19 Apr 202400:00	–	nessus
Positive Technologies	PT-2023-9047 · Oracle · Oracle E-Business Suite +1	7 Dec 202300:00	–	ptsecurity
RedhatCVE	CVE-2024-21077	5 Feb 202511:01	–	redhatcve

Vulners

Node

oracle e-business_suiteRange12.2.3–12.2.13

OR

oracle trade_managementRange12.2.3–12.2.13

Source	Link
oracle	www.oracle.com/security-alerts/cpuapr2024.html
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2024041712
vuldb	www.vuldb.com/
web	www.web.nvd.nist.gov/view/vuln/detail

26 Apr 2024 00:00Current

7.2High risk

Vulners AI Score7.2

CVSS 37.5

CVSS 27.8

EPSS0.00609

general ledger accounts list values input validation flaws unauthorized access oracle trade management