Oracle Fusion Middleware Flaw Flagged by CISA
The bug could allow unauthorized access and takeover, earning it a spot on the Known Exploited Vulnerabilities Catalog.
![Clouds to illustrate software architecture in the cloud Clouds to illustrate software architecture in the cloud](https://eu-images.contentstack.com/v3/assets/blt6d90778a997de1cd/blt651d4d9434f76dbe/64f15b1b90b1dc40d8fe5f08/cloudarchitecture-ArtemisDiana_AlamyStockPhoto.jpg?width=1280&auto=webp&quality=95&format=jpg&disable=upscale)
A critical bug in Oracle's Fusion Middleware Access Manager has landed on the Cybersecurity and Infrastructure Security Agency's list of known exploited vulnerabilities.
The critical flaw, tracked under CVE-2021-35587, could allow a threat actor to compromise and take over the Oracle Access Manager.
Oracle's Fusion Middleware is an enterprise cloud platform used by customers that include large telecom carriers and factories, according to its site.
CISA labeled it an an "unspecified" vuln. "Oracle Fusion Middleware Access Manager allows an unauthenticated attacker with network access via HTTP to take over the Access Manager product," CISA warned.
About the Author(s)
You May Also Like
CISO Perspectives: How to make AI an Accelerator, Not a Blocker
August 20, 2024Securing Your Cloud Assets
August 27, 2024