Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Event Management). Supported versions that are af…

Critical vulnerability in Oracle Enterprise Manager Base Platform's Event Management component affecting versions 13.5 and 24.1. The easily exploitable vulnerability allows high privileged attackers with network access via HTTP to compromise the platform. Successful exploitation can result in complete takeover of Oracle Enterprise Manager Base Platform and may significantly impact additional products due to scope change. The vulnerability has a CVSS 3.1 Base Score of 9.1 with high impact on confidentiality, integrity, and availability.