CVE-2021-2463 – Vulnerability in the Oracle Commerce Platform product of Oracle Commerce (component: Dynam …

21 July 2021

Vuln ID: CVE-2021-2463

Published: 2021-07-21 00:15:17Z

Description: Vulnerability in the Oracle Commerce Platform product of Oracle Commerce (component: Dynamo Application Framework). Supported versions that are affected are 11.0.0, 11.1.0, 11.2.0 and 11.3.0-11.3.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Commerce Platform. Successful attacks of this vulnerability can result in takeover of Oracle Commerce Platform. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

Source: NVD.NIST.GOV

Date:

21 July 2021

Categorie(s):

NVD

Tag(s):

NVD

Alert! Cisco Releases Critical Security Updates to Fix 2 ASA Firewall 0-Days25 April 2024
Pakistani APT Hackers Attacking Indian Govt Entities With Weaponized Shortcut Files25 April 2024
High Performance Podcast Duo to Unveil Secrets of Success at Infosecurity Europe 202425 April 2024
BforeAI raises $15 million to prevent attacks before they occur25 April 2024
Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny25 April 2024