CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
94.7%
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to “Advisor” and “Select Any Dictionary” privileges.
Vendor | Product | Version | CPE |
---|---|---|---|
oracle | database_server | 11.1.0.7 | cpe:2.3:a:oracle:database_server:11.1.0.7:*:*:*:*:*:*:* |
oracle | database_server | 11.2.0.3 | cpe:2.3:a:oracle:database_server:11.2.0.3:*:*:*:*:*:*:* |
oracle | database_server | 11.2.0.4 | cpe:2.3:a:oracle:database_server:11.2.0.4:*:*:*:*:*:*:* |
oracle | database_server | 12.1.0.1 | cpe:2.3:a:oracle:database_server:12.1.0.1:*:*:*:*:*:*:* |