CVE-2024-21133

Name of the Vulnerable Software and Affected Versions: Oracle Reports Developer versions 12.2.1.4.0 through 12.2.1.19.0

Description: The issue is related to insufficient input validation in the Servlet component of Oracle Reports Developer. This can be exploited by a remote attacker to gain read, modify, add, or delete access to data. Successful attacks require human interaction and can significantly impact additional products. The exploitation can result in unauthorized access to some of Oracle Reports Developer's accessible data.

Recommendations: For versions 12.2.1.4.0 through 12.2.1.19.0, update to a version that includes the fix for this issue to prevent unauthorized access and potential data modification. At the moment, there is no information about a newer version that contains a fix for this vulnerability.