EUVD-2024-18778

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in Oracle Business Intelligence allows low privileged attackers to access data.

Reporter	Title	Published	Views	Family All 13
BDU FSTEC	The vulnerability of the Analytics Web Answers component of the Oracle Business Intelligence Enterprise Edition software platform allows a perpetrator to gain access to modify, add, or delete data.	17 May 202400:00	–	bdu_fstec
CNNVD	Oracle Business Intelligence Enterprise Edition 安全漏洞	16 Apr 202400:00	–	cnnvd
CVE	CVE-2024-21064	16 Apr 202421:26	–	cve
Cvelist	CVE-2024-21064	16 Apr 202421:26	–	cvelist
NCSC	Vulnerabilities fixed in Oracle Analytics	18 Apr 202400:00	–	ncsc
NVD	CVE-2024-21064	16 Apr 202422:15	–	nvd
Oracle	Oracle Critical Patch Update Advisory - April 2024	16 Apr 202400:00	–	oracle
Tenable Nessus	Oracle Business Intelligence Enterprise Edition (April 2024 CPU)	19 Apr 202400:00	–	nessus
Tenable Nessus	Oracle Business Intelligence Enterprise Edition (OAS 7.0) (April 2024 CPU)	19 Apr 202400:00	–	nessus
OSV	CVE-2024-21064	16 Apr 202422:15	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "27ca20a5-6e26-37cd-a18f-5192baaf550d",
        "vendor": {
          "name": "Oracle Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "688295a3-7ea7-3c96-978d-ea0ba7b5ea98",
        "product": {
          "name": "Business Intelligence Enterprise Edition"
        },
        "product_version": "12.2.1.4.0"
      },
      {
        "id": "8b895685-9b50-3873-b15c-99be5e11076a",
        "product": {
          "name": "Business Intelligence Enterprise Edition"
        },
        "product_version": "7.0.0.0.0"
      }
    ]
  }
]

Source	Link
oracle	www.oracle.com/security-alerts/cpuapr2024.html

03 Oct 2025 20:07Current

7.5High risk

Vulners AI Score7.5

CVSS 3.15.4

EPSS0.00215

SSVC