How severe is CVE-2024-21126?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.8 out of 10.

What type of vulnerability is CVE-2024-21126?

This is classified as CWE-400, which is a common weakness in software security.

CVE-2024-21126

MEDIUM Year: 2024

CVSS v3 Score

5.8

Medium

Weakness Type

CWE-400

View all →

Vulnerability Description

Vulnerability in the Oracle Database Portable Clusterware component of Oracle Database Server. Supported versions that are affected are 19.3-19.23 and 21.3-21.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via DNS to compromise Oracle Database Portable Clusterware. While the vulnerability is in Oracle Database Portable Clusterware, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Database Portable Clusterware. CVSS 3.1 Base Score 5.8 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L).

CVE-2018-0381

MEDIUM

CVSS:5.8(Medium)

A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of se...

CWE-4002018

CVE-2018-15464

MEDIUM

CVSS:5.8(Medium)

A vulnerability in Cisco 900 Series Aggregation Services Router (ASR) software could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition on an affected devic...

CWE-4002018

CVE-2019-1672

MEDIUM

CVSS:5.8(Medium)

A vulnerability in the Decryption Policy Default Action functionality of the Cisco Web Security Appliance (WSA) could allow an unauthenticated, remote attacker to bypass a configured drop policy and a...

CWE-4002019

CVE-2020-3190

MEDIUM

CVSS:5.8(Medium)

A vulnerability in the IPsec packet processor of Cisco IOS XR Software could allow an unauthenticated remote attacker to cause a denial of service (DoS) condition for IPsec sessions to an affected dev...

CWE-4002020

CVE-2021-37865

MEDIUM

CVSS:5.7(Medium)

Mattermost 6.2 and earlier fails to sufficiently process a specifically crafted GIF file when it is uploaded while drafting a post, which allows authenticated users to cause resource exhaustion while ...

CWE-4002021

CVE-2022-0489

MEDIUM

CVSS:5.7(Medium)

An issue has been discovered in GitLab CE/EE affecting all versions starting with 8.15 . It was possible to trigger a DOS by using the math feature with a specific formula in issue comments.

CWE-4002022

CVE-2024-21126

Vulnerability Description

Related Vulnerabilities

CVE-2018-0381

CVE-2018-15464

CVE-2019-1672

CVE-2020-3190

CVE-2021-37865

CVE-2022-0489