Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLE_RDBMS_CPU_OCT_2022.NASL
HistoryOct 21, 2022 - 12:00 a.m.

Oracle Database Server (Oct 2022 CPU)

2022-10-2100:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
22
JSON

The 19c and 21c versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2022 CPU advisory.

  • Vulnerability in the Oracle Database - Machine Learning (Numpy) component of Oracle Database Server. The supported version that is affected is 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database - Machine Learning (Numpy). (CVE-2021-41495)

  • Vulnerability in the Spatial and Graph (jackson-databind) component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Authenticated User privilege with network access via HTTP to compromise Spatial and Graph (jackson-databind). Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Spatial and Graph (jackson-databind).
    (CVE-2020-36518)

  • Vulnerability in the Oracle Notification Server (PCRE2) component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Subscriber privilege with network access via HTTP to compromise Oracle Notification Server (PCRE2). Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Notification Server (PCRE2).
    Note: This vulnerability applies to Windows systems only. (CVE-2022-1587)

  • Vulnerability in the Oracle Database - Advanced Queuing component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having DBA user privilege with network access via Oracle Net to compromise Oracle Database - Advanced Queuing.
    Successful attacks of this vulnerability can result in takeover of Oracle Database - Advanced Queuing.
    (CVE-2022-21596)

  • Vulnerability in the Oracle Database - Sharding component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having Local Logon privilege with network access via Local Logon to compromise Oracle Database - Sharding.
    Successful attacks of this vulnerability can result in takeover of Oracle Database - Sharding.
    (CVE-2022-21603)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(166370);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/24");

  script_cve_id(
    "CVE-2019-2904",
    "CVE-2020-13956",
    "CVE-2020-36518",
    "CVE-2021-3737",
    "CVE-2021-4048",
    "CVE-2021-25122",
    "CVE-2021-25329",
    "CVE-2021-30129",
    "CVE-2021-41495",
    "CVE-2021-41496",
    "CVE-2022-1586",
    "CVE-2022-1587",
    "CVE-2022-2047",
    "CVE-2022-2048",
    "CVE-2022-21540",
    "CVE-2022-21541",
    "CVE-2022-21549",
    "CVE-2022-21596",
    "CVE-2022-21603",
    "CVE-2022-21606",
    "CVE-2022-34169",
    "CVE-2022-34305",
    "CVE-2022-39419"
  );
  script_xref(name:"IAVA", value:"2022-A-0424-S");
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");
  script_xref(name:"IAVA", value:"2023-A-0558");
  script_xref(name:"IAVA", value:"2023-A-0559");

  script_name(english:"Oracle Database Server (Oct 2022 CPU)");

  script_set_attribute(attribute:"synopsis", value:
"The remote host is affected by multiple vulnerabilities");
  script_set_attribute(attribute:"description", value:
"The 19c and 21c versions of Oracle Database Server installed on the remote host are affected by multiple
vulnerabilities as referenced in the October 2022 CPU advisory.

  - Vulnerability in the Oracle Database - Machine Learning (Numpy) component of Oracle Database Server. The 
    supported version that is affected is 21c. Easily exploitable vulnerability allows low privileged attacker
    having Create Session privilege with network access via Oracle Net to compromise Oracle Database - Machine
    Learning (Numpy). (CVE-2021-41495)  

  - Vulnerability in the Spatial and Graph (jackson-databind) component of Oracle Database Server. Supported
    versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker
    having Authenticated User privilege with network access via HTTP to compromise Spatial and
    Graph (jackson-databind). Successful attacks of this vulnerability can result in unauthorized ability to
    cause a hang or frequently repeatable crash (complete DOS) of Spatial and Graph (jackson-databind).
    (CVE-2020-36518)

  - Vulnerability in the Oracle Notification Server (PCRE2) component of Oracle Database Server. Supported
    versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged
    attacker having Subscriber privilege with network access via HTTP to compromise Oracle Notification
    Server (PCRE2). Successful attacks of this vulnerability can result in unauthorized ability to cause
    a hang or frequently repeatable crash (complete DOS) of Oracle Notification Server (PCRE2).
    Note: This vulnerability applies to Windows systems only. (CVE-2022-1587)

  - Vulnerability in the Oracle Database - Advanced Queuing component of Oracle Database Server. The supported
    version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having
    DBA user privilege with network access via Oracle Net to compromise Oracle Database - Advanced Queuing.
    Successful attacks of this vulnerability can result in takeover of Oracle Database - Advanced Queuing.
    (CVE-2022-21596)

  - Vulnerability in the Oracle Database - Sharding component of Oracle Database Server. Supported versions
    that are affected are 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having
    Local Logon privilege with network access via Local Logon to compromise Oracle Database - Sharding.
    Successful attacks of this vulnerability can result in takeover of Oracle Database - Sharding.
    (CVE-2022-21603)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/docs/tech/security-alerts/cpuoct2022cvrf.xml");
  script_set_attribute(attribute:"see_also", value:"https://www.oracle.com/security-alerts/cpuoct2022.html");
  script_set_attribute(attribute:"solution", value:
"Apply the appropriate patch according to the October 2022 Oracle Critical Patch Update advisory.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-2904");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/10/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/10/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/10/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:database_server");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Databases");

  script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("oracle_rdbms_query_patch_info.nbin", "oracle_rdbms_patch_info.nbin");

  exit(0);
}

include('vcf_extras_oracle.inc');

var app_info = vcf::oracle_rdbms::get_app_info();

var constraints = [
  # RDBMS:
  {'min_version': '21.0', 'fixed_version': '21.8.0.0.221018', 'missing_patch':'34527084', 'os':'unix', 'component':'db'},
  {'min_version': '21.0', 'fixed_version': '21.8.0.0.221018', 'missing_patch':'34468137', 'os':'win', 'component':'db'},

  {'min_version': '19.0', 'fixed_version': '19.15.2.0.221018', 'missing_patch':'34429835', 'os':'unix', 'component':'db'},
  {'min_version': '19.0', 'fixed_version': '19.17.0.0.221018', 'missing_patch':'34468114', 'os':'win', 'component':'db'},
  {'min_version': '19.16', 'fixed_version': '19.16.1.0.221018', 'missing_patch':'34444812', 'os':'unix', 'component':'db'},
  {'min_version': '19.17', 'fixed_version': '19.17.0.0.221018', 'missing_patch':'34419443', 'os':'unix', 'component':'db'},

  # OJVM:
  {'min_version': '19.0',  'fixed_version': '19.17.0.0.221018', 'missing_patch':'34411846', 'os':'unix', 'component':'ojvm'},
  {'min_version': '19.0',  'fixed_version': '19.17.0.0.221018', 'missing_patch':'34411846', 'os':'win', 'component':'ojvm'}
];

vcf::oracle_rdbms::check_version_and_report(
  app_info:app_info,
  constraints:constraints,
  severity:SECURITY_HOLE
);
VendorProductVersionCPE
oracledatabase_servercpe:/a:oracle:database_server

References

Related

nessus 76
kaspersky 2
suse 4
oraclelinux 8
almalinux 5
osv 11
rocky 3
redhat 20
openvas 38
amazon 4
debian 3
broadcom 1
ibm 6
f5 1
altlinux 1
fedora 4
centos 2
cloudlinux 1
atlassian 7
photon 2
nessus
nessus
RHEL 9 : java-17-openjdk (RHSA-2022:5736)
2022-07-28 00:00:00
Amazon Linux 2 : java-17-amazon-corretto (ALAS-2022-1824)
2022-07-21 00:00:00
RHEL 8 : java-17-openjdk (RHSA-2022:5726)
2022-07-27 00:00:00
kaspersky
kaspersky
KLA12588 Multiple vulnerabilities in Oracle Java SE and GraalVM
2022-07-19 00:00:00
KLA12104 Multiple vulnerabilities in Apache Tomcat
2021-02-02 00:00:00
suse
suse
Security update for java-17-openjdk (important)
2022-08-03 00:00:00
Security update for java-1_8_0-ibm (important)
2022-08-31 00:00:00
Security update for java-11-openjdk (important)
2022-08-09 00:00:00
oraclelinux
oraclelinux
java-17-openjdk security, bug fix, and enhancement update
2022-07-27 00:00:00
java-17-openjdk security, bug fix, and enhancement update
2022-07-28 00:00:00
java-1.8.0-openjdk security, bug fix, and enhancement update
2022-07-25 00:00:00
almalinux
almalinux
Important: java-17-openjdk security, bug fix, and enhancement update
2022-07-27 00:00:00
Important: java-1.8.0-openjdk security, bug fix, and enhancement update
2022-07-25 00:00:00
Important: java-11-openjdk security, bug fix, and enhancement update
2022-07-25 00:00:00
osv
osv
Important: java-17-openjdk security, bug fix, and enhancement update
2022-07-27 00:00:00
openjdk-17 - security update
2022-07-26 00:00:00
Important: java-17-openjdk security, bug fix, and enhancement update
2022-07-26 17:15:53
rocky
rocky
java-17-openjdk security, bug fix, and enhancement update
2022-07-26 17:15:53
java-11-openjdk security, bug fix, and enhancement update
2022-07-21 13:41:28
java-1.8.0-openjdk security, bug fix, and enhancement update
2022-07-25 13:45:21
redhat
redhat
(RHSA-2022:5758) Important: OpenJDK 17.0.4 Security Update for Portable Linux Builds
2022-07-28 15:42:33
(RHSA-2022:5757) Important: OpenJDK 17.0.4 security update for Windows Builds
2022-07-28 15:42:22
(RHSA-2022:5726) Important: java-17-openjdk security, bug fix, and enhancement update
2022-07-26 17:15:53
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:2660-1)
2022-08-04 00:00:00
Fedora: Security Advisory for java-17-openjdk (FEDORA-2022-34584d4257)
2022-07-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2899-1)
2022-08-26 00:00:00
amazon
amazon
Important: java-17-amazon-corretto
2022-07-19 01:19:00
Important: java-11-amazon-corretto
2022-07-19 01:18:00
Important: java-1.8.0-openjdk
2022-09-01 21:09:00
debian
debian
[SECURITY] [DSA 5192-1] openjdk-17 security update
2022-07-26 20:13:06
[SECURITY] [DSA 5188-1] openjdk-11 security update
2022-07-22 20:58:41
[SECURITY] [DSA 4891-1] tomcat9 security update
2021-04-13 20:47:05
broadcom
broadcom
Oracle Java SE Multiple Vulnerabilities (July 2022 CPU update) CVE-2022-21540 CVE-2022-21541 CVE-2022-21549 CVE-2022-25647 CVE-2022-34169
2023-08-29 00:00:00
ibm
ibm
Security Bulletin: Multiple security vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak
2022-10-11 15:36:52
Security Bulletin: Multiple Vulnerabilities discovered in libraries used by Apache Zookeeper that is included in ITNM (CVE-2020-36518, CVE-2022-2047, CVE-2022-2048, CVE-2022-24823)
2023-01-04 15:58:13
Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in NumPy
2022-03-30 15:20:56
f5
f5
K85932552 : OpenJDK vulnerabilities CVE-2022-21540, CVE-2022-21541, and CVE-2022-21549
2022-08-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package java-11-openjdk version 0:11.0.16.0.8-alt1_1jpp11
2022-08-05 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: java-latest-openjdk-18.0.2.0.9-1.rolling.fc36
2022-08-03 01:27:35
[SECURITY] Fedora 35 Update: java-latest-openjdk-18.0.2.0.9-1.rolling.fc35
2022-08-03 01:49:31
[SECURITY] Fedora 36 Update: java-17-openjdk-17.0.4.0.8-1.fc36
2022-07-28 01:28:22
centos
centos
java security update
2022-08-02 19:14:32
java security update
2022-08-02 19:13:38
cloudlinux
cloudlinux
Fixed CVEs in java-1.8.0-openjdk: CVE-2022-21541, CVE-2022-34169, CVE-2022-21540
2022-08-04 18:46:36
atlassian
atlassian
Tomcat PersistenceManager vulnerabilities - CVE-2021-25329 and CVE-2021-25122
2021-03-11 19:39:59
Jira Server and Data Center affected by Tomcat CVE-2021-25329 and CVE-2021-25122
2021-04-22 21:11:00
Jira Server and Data Center affected by Tomcat CVE-2021-25329 and CVE-2021-25122
2021-04-22 21:11:00
photon
photon
Important Photon OS Security Update - PHSA-2021-0208
2021-03-17 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0372
2021-03-18 00:00:00
JSON
Related for ORACLE_RDBMS_CPU_OCT_2022.NASL
nessus76kaspersky2suse4oraclelinux8almalinux5osv11rocky3redhat20openvas38amazon4debian3broadcom1ibm6f51altlinux1fedora4centos2cloudlinux1atlassian7photon2