Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_RDBMS_CPU_JAN_2023.NASL
HistoryJan 20, 2023 - 12:00 a.m.

Oracle Database Server for Unix (Jan 2023 CPU)

2023-01-2000:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
147
JSON

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory.

  • Vulnerability in the Oracle Database - Machine Learning for Python (Python) component of Oracle Database Server. The supported version that is affected is 21c. Easily exploitable vulnerability allows low privileged attacker having Database User privilege with network access via Oracle Net to compromise Oracle Database - Machine Learning for Python (Python). Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Database - Machine Learning for Python (Python). (CVE-2021-3737)

  • Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database RDBMS Security. Successful attacks require human interaction from a person other than the attacker.
    Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Database RDBMS Security accessible data as well as unauthorized read access to a subset of Oracle Database RDBMS Security accessible data. (CVE-2023-21829)

  • Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java VM. (CVE-2022-39429)

  • Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database Data Redaction. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Database Data Redaction accessible data. (CVE-2023-21827)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(170191);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/24");

  script_cve_id(
    "CVE-2018-25032",
    "CVE-2020-10735",
    "CVE-2020-10878",
    "CVE-2021-3737",
    "CVE-2021-29338",
    "CVE-2021-37750",
    "CVE-2022-1122",
    "CVE-2022-3171",
    "CVE-2022-21597",
    "CVE-2022-39429",
    "CVE-2022-42003",
    "CVE-2022-42004",
    "CVE-2022-42889",
    "CVE-2022-45047",
    "CVE-2023-21827",
    "CVE-2023-21829"
  );
  script_xref(name:"IAVA", value:"2023-A-0035-S");
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");
  script_xref(name:"CEA-ID", value:"CEA-2021-0004");
  script_xref(name:"IAVA", value:"2023-A-0559");

  script_name(english:"Oracle Database Server for Unix (Jan 2023 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as
referenced in the January 2023 CPU advisory.

  - Vulnerability in the Oracle Database - Machine Learning for Python (Python) component of Oracle Database
    Server. The supported version that is affected is 21c. Easily exploitable vulnerability allows low
    privileged attacker having Database User privilege with network access via Oracle Net to compromise Oracle
    Database - Machine Learning for Python (Python). Successful attacks of this vulnerability can result in
    unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Database -
    Machine Learning for Python (Python). (CVE-2021-3737)

  - Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported
    versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged
    attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database
    RDBMS Security. Successful attacks require human interaction from a person other than the attacker.
    Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification
    access to critical data or all Oracle Database RDBMS Security accessible data as well as unauthorized read
    access to a subset of Oracle Database RDBMS Security accessible data. (CVE-2023-21829)

  - Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are
    19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure
    privilege with network access via Oracle Net to compromise Java VM. Successful attacks of this
    vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of
    Java VM. (CVE-2022-39429)

  - Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported
    versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged
    attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database
    Data Redaction. Successful attacks of this vulnerability can result in unauthorized read access to a
    subset of Oracle Database Data Redaction accessible data. (CVE-2023-21827)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpujan2023cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpujan2023.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the January 2023 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_attribute(attribute:"cvss_score_source", value:"manual");
  script_set_attribute(attribute:"cvss_score_rationale", value:"Score from CVE-2023-21829");
  script_set_attribute(attribute:"cvss3_score_rationale", value:"Score from CVE-2021-3737");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/01/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/01/17");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/01/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:database_server");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_rdbms_query_patch_info.nbin", "oracle_rdbms_patch_info.nbin");

  exit(0);
}

include('vcf_extras_oracle.inc');

var app_info = vcf::oracle_rdbms::get_app_info();

var constraints = [
  # RDBMS:
  {'min_version': '21.0', 'fixed_version': '21.9.0.0.230117', 'missing_patch':'34839741', 'os':'unix', 'component':'db'},

  {'min_version': '19.0', 'fixed_version': '19.16.2.0.230117', 'missing_patch':'34771828', 'os':'unix', 'component':'db'},
  {'min_version': '19.17', 'fixed_version': '19.18.0.0.230117', 'missing_patch':'34765931', 'os':'unix', 'component':'db'},

  # OJVM:
  {'min_version': '19.0',  'fixed_version': '19.18.0.0.230117', 'missing_patch':'34786990', 'os':'unix', 'component':'ojvm'},
];

vcf::oracle_rdbms::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_WARNING
);
VendorProductVersionCPE
oracledatabase_servercpe:/a:oracle:database_server

References

Related

nessus 38
ibm 41
gentoo 3
openvas 25
redhat 7
mageia 2
debian 3
osv 11
prion 10
cve 8
cnvd 3
veracode 4
ubuntucve 3
github 1
altlinux 2
suse 2
f5 1
redhatcve 5
debiancve 2
alpinelinux 3
oraclelinux 1
fedora 2
cbl_mariner 2
rapid7blog 1
githubexploit 12
redos 1
atlassian 1
centos 1
amazon 1
cloudlinux 1
wallarmlab 1
zdt 1
nessus
nessus
Oracle Database Server for Windows (Jan 2023 CPU)
2023-01-20 00:00:00
Oracle GoldenGate (April 2023 CPU)
2023-04-19 00:00:00
Oracle Primavera Gateway (Jan 2023 CPU)
2023-01-20 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in IBM WebSphere Application Server Liberty, FasterXML jackson-databind, and Zlib affect IBM Spectrum Protect Backup-Archive Client (CVE-2022-34165, CVE-2022-42003, CVE-2022-42004, CVE-2018-25032)
2022-12-10 00:19:38
Security Bulletin: Vulnerabilities in IBM WebSphere Application Server Liberty, FasterXML jackson-databind, and Zlib affect IBM Spectrum Protect for Virtual Environments (CVE-2022-34165, CVE-2022-42003, CVE-2022-42004, CVE-2018-25032)
2022-12-10 00:20:27
Security Bulletin: Vulnerabilities in IBM WebSphere Application Server Liberty, FasterXML jackson-databind, and Zlib affect IBM Spectrum Protect for Space Management Client (CVE-2022-34165, CVE-2022-42003, CVE-2022-42004, CVE-2018-25032)
2022-12-09 10:00:46
gentoo
gentoo
OpenJPEG: Multiple Vulnerabilities
2022-09-07 00:00:00
FasterXML jackson-databind: Multiple vulnerabilities
2022-10-31 00:00:00
Apache Commons Text: Arbitrary Code Execution
2023-01-11 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:3995-1)
2022-11-16 00:00:00
Mageia: Security Advisory (MGASA-2024-0069)
2024-03-18 00:00:00
Debian: Security Advisory (DSA-5283-1)
2022-11-18 00:00:00
redhat
redhat
(RHSA-2022:9023) Important: Red Hat build of Quarkus 2.13.5 release and security update
2022-12-14 13:13:39
(RHSA-2023:0713) Important: Red Hat Data Grid 8.4.1 security update
2023-02-09 11:33:55
(RHSA-2023:1006) Important: Red Hat build of Quarkus 2.7.7 release and security update
2023-03-08 14:51:11
mageia
mageia
Updated jackson-databind packages fix security vulnerabilities
2024-03-16 19:28:17
Updated openjpeg2 packages fix a security vulnerability
2021-05-22 01:47:24
debian
debian
[SECURITY] [DSA 5283-1] jackson-databind security update
2022-11-17 11:17:07
[SECURITY] [DLA 3207-1] jackson-databind security update
2022-11-27 18:53:52
[SECURITY] [DLA 2975-1] openjpeg2 security update
2022-04-10 12:53:52
osv
osv
jackson-databind - security update
2022-11-27 00:00:00
jackson-databind - security update
2022-11-17 00:00:00
CVE-2022-21597
2022-10-18 21:15:11
prion
prion
Design/Logic Flaw
2023-01-18 00:15:00
Design/Logic Flaw
2023-01-18 00:15:00
Design/Logic Flaw
2023-01-18 00:15:00
cve
cve
CVE-2022-39429
2023-01-18 00:15:00
CVE-2023-21829
2023-01-18 00:15:12
CVE-2023-21827
2023-01-18 00:15:12
cnvd
cnvd
Oracle Database ServerOracle Database Server Security Bypass Vulnerability
2023-02-14 00:00:00
Apache MINA deserialization vulnerability
2022-11-18 00:00:00
Apache Commons Text remote code execution vulnerability
2022-10-14 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-04-28 05:32:39
Deserialization Of Untrusted Data
2022-11-17 08:30:02
Denial Of Service (DoS)
2021-12-02 00:40:48
ubuntucve
ubuntucve
CVE-2021-29338
2021-04-14 00:00:00
CVE-2020-10878
2020-06-01 00:00:00
CVE-2021-37750
2021-08-23 00:00:00
github
github
Unsafe deserialization in Apache MINA SSHD
2022-11-16 12:00:18
altlinux
altlinux
Security fix for the ALT Linux 9 package krb5 version 1.17.2-alt3
2022-03-21 00:00:00
Security fix for the ALT Linux 10 package krb5 version 1.19.3-alt1
2022-03-18 00:00:00
suse
suse
Security update for krb5 (moderate)
2021-10-31 00:00:00
Security update for krb5 (moderate)
2021-10-18 00:00:00
f5
f5
K91021753 : Apache MINA vulnerability CVE-2022-45047
2022-11-18 00:00:00
redhatcve
redhatcve
CVE-2021-29338
2021-04-20 19:14:18
CVE-2022-45047
2022-11-23 13:56:39
CVE-2021-37750
2021-08-23 19:05:53
debiancve
debiancve
CVE-2021-29338
2021-04-14 14:15:00
CVE-2021-37750
2021-08-23 05:15:00
alpinelinux
alpinelinux
CVE-2021-29338
2021-04-14 14:15:00
CVE-2020-10878
2020-06-05 14:15:00
CVE-2021-37750
2021-08-23 05:15:00
oraclelinux
oraclelinux
krb5 security update
2021-11-24 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: krb5-1.18.2-31.fc33
2021-08-27 18:55:48
[SECURITY] Fedora 34 Update: krb5-1.19.2-2.fc34
2021-08-21 01:08:11
cbl_mariner
cbl_mariner
CVE-2021-37750 affecting package krb5 1.19.2-1
2022-06-26 03:29:33
CVE-2021-37750 affecting package krb5 1.18.4-3
2021-11-03 19:21:15
rapid7blog
rapid7blog
Rapid7’s Impact from Apache Commons Text Vulnerability (CVE-2022-42889)
2022-11-04 13:00:00
githubexploit
githubexploit
Exploit for Code Injection in Apache Commons Text
2022-10-23 08:33:02
Exploit for Code Injection in Apache Commons Text
2022-11-04 19:26:23
Exploit for Code Injection in Apache Commons Text
2023-04-21 08:06:26
redos
redos
ROS-20230922-01
2023-09-22 00:00:00
atlassian
atlassian
Upgrade Apache Commons-text to mitigate CVE-2022-42889 (excludes bundled OpenSearch)
2022-10-24 22:35:59
centos
centos
krb5, libkadm5 security update
2021-12-02 23:54:17
amazon
amazon
Medium: krb5
2022-01-18 21:37:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2020-10878
2021-09-22 16:30:34
wallarmlab
wallarmlab
New text2shell RCE vulnerability in Apache Common Texts CVE-2022-42889
2022-10-18 05:02:38
zdt
zdt
Apache Commons Text 1.9 Remote Code Execution Exploit
2024-01-21 00:00:00
JSON
Related for ORACLE_RDBMS_CPU_JAN_2023.NASL
nessus38ibm41gentoo3openvas25redhat7mageia2debian3osv11prion10cve8cnvd3veracode4ubuntucve3github1altlinux2suse2f51redhatcve5debiancve2alpinelinux3oraclelinux1fedora2cbl_mariner2rapid7blog1githubexploit12redos1atlassian1centos1amazon1cloudlinux1wallarmlab1zdt1