CVE-2024-21287CISA KEVEPSS p70.8%

CVE-2024-21287Oracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerability

Oracle / Agile Product Lifecycle Management (PLM)

Description

Oracle Agile Product Lifecycle Management (PLM) contains an incorrect authorization vulnerability in the Process Extension component of the Software Development Kit. Successful exploitation of this vulnerability may result in unauthenticated file disclosure.

Scoring

EPSS1.50% probability of exploitation · percentile 70.8% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2024-11-21

(incoming)1

TypeTargetConfidenceTier
KEVEntryOracle Agile Product Lifecycle Management (PLM) Incorrect Authorization Vulnerabilitykev-cve-2024-212870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability
CVE
CVE-2026-21969
CVE
CVE-2025-21556
CVE
CVE-2025-21564
CVE
Apache OFBiz Incorrect Authorization Vulnerability
CVE
Oracle E-Business Suite Unspecified Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.