Lucene search
OracleCVELIST:CVE-2024-20927HistoryFeb 17, 2024 - 1:50 a.m.
CVE-2024-20927
2024-02-1701:50:11
oracle
www.cve.org
7
security
vulnerability
cve-2024-20927
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
17.8%
CNA Affected
[
{
"vendor": "Oracle Corporation",
"product": "WebLogic Server",
"versions": [
{
"version": "12.2.1.4.0",
"status": "affected"
},
{
"version": "14.1.1.0.0",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2024-20927
2024-02-17 02:15:47
jvn
jvn
JVN#93541851: Oracle WebLogic Server vulnerable to HTTP header injection
2024-01-24 00:00:00
prion
prion
Design/Logic Flaw
2024-02-17 02:15:00
cve
cve
CVE-2024-20927
2024-02-17 02:15:47
vulnrichment
vulnrichment
CVE-2024-20927
2024-02-17 01:50:11
nessus
nessus
Oracle WebLogic Server (January 2024 CPU)
2024-01-18 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2024
2024-01-16 00:00:00
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
17.8%
Related for CVELIST:CVE-2024-20927