Oracle has issued an urgent security alert regarding a critical vulnerability in its Agile Product Lifecycle Management (PLM) Framework that is actively being exploited in the wild.
The vulnerability, tracked as CVE-2024-21287, allows unauthenticated attackers to access and download sensitive files from affected systems remotely.
The zero-day flaw affects Oracle Agile PLM Framework version 9.3.6, specifically the Software Development Kit and Process Extension components.
With a CVSS base score of 7.5, this high-severity vulnerability can be exploited remotely without authentication via HTTP or HTTPS protocols.
Maximizing Cybersecurity ROI: Expert Tips for SME & MSP Leaders – Attend Free Webinar
If successfully exploited, an unauthenticated attacker could gain unauthorized access to critical data or potentially obtain complete access to all Oracle Agile PLM Framework accessible data.
The vulnerability may result in file disclosure, allowing attackers to download files accessible under the privileges of the PLM application.
Security researchers Joel Snape and Lutz Wolf from CrowdStrike discovered and reported the vulnerability to Oracle.
While specific details about the ongoing attacks are limited, Oracle has confirmed that the flaw is being actively exploited in the wild.
Eric Maurice, Vice President of Security Assurance at Oracle, stated, “If successfully exploited, an unauthenticated perpetrator could download files accessible under the privileges used by the PLM application” from the targeted system.
Patch & Mitigation
Oracle has released a security patch to address CVE-2024-21287 and strongly recommends that customers apply the updates this Security Alert provides as soon as possible.
The company emphasizes the situation’s urgency, given the active exploitation of the vulnerability.
Affected organizations should:
- Immediately apply the latest security patches provided by Oracle.
- Review system logs for any signs of unauthorized access or file downloads.
- Monitor for any suspicious activity related to the Agile PLM Framework.
This incident highlights the critical importance of prompt patch management and organizations’ ongoing challenges in securing enterprise software.
As attackers continue to target vulnerabilities in widely used business applications, timely response to security alerts becomes crucial in preventing data breaches and unauthorized access.
Oracle customers are advised to stay vigilant and prioritize the application of this security update to mitigate the risk posed by this actively exploited zero-day vulnerability in the Agile PLM Framework.
Are you from SOC/DFIR Teams? – Analyse Malware Files & Links with ANY.RUN -> Try for Free