Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Unauthenticated HTTPS reachability with no UI matches AV:N/AC:L/PR:N/UI:N; complete DoS gives A:H, partial data modification gives I:L, no confidentiality impact gives C:N.
Primary rating from Vendor (oracle).
CVSS VectorVendor: oracle
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Lifecycle Timeline
1DescriptionCVE.org
Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Agent Next Gen). Supported versions that are affected are 13.5 and 24.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Enterprise Manager Base Platform. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Enterprise Manager Base Platform as well as unauthorized update, insert or delete access to some of Oracle Enterprise Manager Base Platform accessible data. CVSS 3.1 Base Score 8.2 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H).
AnalysisAI
Remote denial-of-service and data tampering in Oracle Enterprise Manager Base Platform 13.5 and 24.1 allows unauthenticated network attackers to crash or hang the management console and to perform unauthorized modifications to a subset of accessible data via the Agent Next Gen component over HTTPS. Oracle rates the issue CVSS 8.2 and notes the flaw is easily exploitable; no public exploit identified at time of analysis, and it is not listed on the CISA KEV catalog.
Technical ContextAI
Oracle Enterprise Manager (OEM) Base Platform is Oracle's centralized management and monitoring console for Oracle databases, middleware, engineered systems, and cloud workloads. The vulnerable surface is the Agent Next Gen component, which mediates HTTPS communications between the central OMS (Oracle Management Service) and managed-target agents. While no CWE is published, the combination of availability-high and integrity-low impacts on an unauthenticated HTTPS endpoint is consistent with an input-handling defect in request parsing or session state - likely a malformed-message handler that can exhaust a worker, corrupt in-memory state, or write unintended values to a subset of OEM-accessible data. The affected CPE is cpe:2.3:a:oracle_corporation:oracle_enterprise_manager_base_platform covering releases 13.5 and 24.1.
RemediationAI
Apply the patches delivered in Oracle's June 2026 Critical Patch Update referenced at https://www.oracle.com/security-alerts/cspujun2026.html, which is the vendor-released fix track for OEM 13.5 and 24.1 - note exact patched build numbers must be taken from the CPU document itself rather than inferred. Until the CPU is staged, restrict network reachability of the OMS HTTPS endpoints (default 7799/7802 for Agent Next Gen and 7803 for the console upload port) to only the management VLAN and known agent hosts via firewall or security-list ACLs, accepting the trade-off that agents on unlisted networks will lose communication until they are re-homed. Place the OMS behind a reverse proxy or load balancer that enforces strict TLS client validation if mutual TLS is configured, and disable any unused HTTPS upload endpoints in emagent.properties; these controls reduce exposure but do not eliminate the flaw and should be treated as bridging measures, not substitutes for the CPU patch.
Full takeover of Oracle Enterprise Manager Base Platform 13.5 and 24.1 is possible by a low-privileged remote attacker v
Privileged takeover of Oracle Enterprise Manager Base Platform versions 13.5 and 24.1 is possible through the Metadata P
Privilege escalation and full takeover in Oracle Enterprise Manager Base Platform 13.5 and 24.1 (Target Management compo
Privileged takeover of Oracle Enterprise Manager Base Platform 13.5 and 24.1 is possible through the Discovery Framework
Remote code execution in Oracle Enterprise Manager Base Platform versions 13.5 and 24.1 allows unauthenticated network a
Remote takeover of Oracle Enterprise Manager Base Platform 13.5 and 24.1 is possible when an unauthenticated attacker ov
Cross-scope takeover of Oracle Enterprise Manager Base Platform 13.5 and 24.1 allows unauthenticated remote attackers to
Privileged takeover of Oracle Enterprise Manager Base Platform 13.5 and 24.1 is possible via the Deployment Library comp
Privileged remote tampering in Oracle Enterprise Manager Base Platform 13.5 and 24.1 (Install component) allows an authe
Authenticated takeover of Oracle Enterprise Manager Base Platform 13.5 and 24.1 is possible via the Agent Next Gen compo
Privileged local compromise in Oracle Enterprise Manager Base Platform 13.5 and 24.1 (Extensibility Framework component)
Full takeover of Oracle Enterprise Manager Base Platform (versions 13.5 and 24.1) is possible by an authenticated, high-
Same weakness CWE-400 – Uncontrolled Resource Consumption
View allSame technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-37359