4 matches found
Oracle Warns of Agile PLM Vulnerability Currently Under Active Exploitation
Oracle is warning that a high-severity security flaw impacting the Agile Product Lifecycle Management PLM Framework has been exploited in the wild. The vulnerability, tracked as CVE-2024-21287 CVSS score: 7.5, could be exploited sans authentication to leak sensitive information. "This vulnerabili...
CVE-2024-21287
creationtimestamp| type| source ---|---|--- 2024-11-18 21:44:22+00:00| seen| https://infosec.exchange/users/cve/statuses/113506140934519890 2024-11-19 00:05:05+00:00| seen| https://t.me/cvedetector/11407 2024-11-19 15:15:04+00:00| seen|...
CVE-2024-21287
...
CVE-2024-21287
CVE-2024-21287 affects Oracle Agile PLM Framework 9.3.6, specifically the Software Development Kit/Process Extension component. The Nessus review notes a vulnerability in 9.3.6.x before 9.3.6.28.3 that enables an unauthenticated, network-accessible attacker (HTTP) to disclose files or access data...