VDB
CVE-2024-38828
CVE-2024-38828
PUBLISHED
CVSS 8.699999809265137 HIGH
Oracle E-Business Suite ist eine Sammlung geschäftlicher Anwendungen für Unternehmen.
EPSS 0.08% · 22.8th percentile
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.08%
22.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SAP | SAP Software | |
| IBM | IBM InfoSphere Information Server 11.7 | |
| NetApp | NetApp ActiveIQ Unified Manager for Linux | |
| NetApp | NetApp ActiveIQ Unified Manager for VMware vSphere | |
| IBM | IBM Operational Decision Manager | |
| Oracle | Oracle Fusion Middleware 8.5.7 | |
| NetApp | NetApp ActiveIQ Unified Manager for Microsoft Windows | |
| Oracle | Oracle Fusion Middleware 14.1.1.0.0 | |
| Oracle | Oracle Fusion Middleware 14.1.2.0.0 | |
| Dell | Dell NetWorker <19.13 | |
| VMware Tanzu | VMware Tanzu Spring Framework <5.3.42 | |
| Oracle | Oracle Fusion Middleware 12.2.1.4.0 | |
| HCL | HCL Commerce 9.1.0-9.1.19.0 | |
| SolarWinds | SolarWinds Security Event Manager <2025.4 | |
| Oracle | Oracle E-Business Suite 12.2.3-12.2.14 | |
| Oracle | Oracle E-Business Suite ECC:12-13 |
Timeline
- Nov 14, 2024 CVE Published
- Nov 18, 2024 EPSS Score
- Nov 18, 2024 Coalition ESS Score
- Nov 18, 2024 Coalition ESS Score
- Dec 6, 2024 EPSS Score
- Dec 24, 2024 EPSS Score
- Jan 10, 2025 EPSS Score
- Jan 28, 2025 EPSS Score
- Feb 14, 2025 EPSS Score
- Mar 4, 2025 EPSS Score
- Mar 13, 2025 Coalition ESS Score
- Mar 21, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-3473.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3473 advisory
- https://spring.io/blog/2024/11/15/spring-framework-cve-2024-38828-published advisory
- https://spring.io/security/cve-2024-38828 advisory
- https://www.ibm.com/support/pages/node/7229205 advisory
- https://security.netapp.com/advisory/ntap-20250509-0009/ advisory
- https://www.dell.com/support/kbdoc/de-de/000338043/dsa-2025-258-security-update-for-dell-networker-multiple-third-party-component-vulnerabilities advisory
- https://documentation.solarwinds.com/en/success_center/sem/content/release_notes/sem_2025-4_release_notes.htm advisory
- https://www.ibm.com/support/pages/node/7252567 advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0307.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0307 advisory
- https://support.sap.com/en/my-support/knowledge-base/security-notes-news/february-2025.html advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0821.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0821 advisory
- https://www.oracle.com/security-alerts/cpuapr2025.html#AppendixEBS advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1572.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1572 advisory
- https://www.oracle.com/security-alerts/cpujul2025.html#AppendixFMW advisory
- https://support.hcl-software.com/community?id=community_blog&sys_id=2f600efd2bf4c7900c64f1a1d891bf19 advisory