2885 matches found
CVE-2021-2333
Vulnerability in the Oracle XML DB component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Alter User privilege with network access via Oracle Net to compromise Oracle XML DB...
CVE-2021-2330
Vulnerability in the Core RDBMS component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows low privileged attacker having Create Table privilege with network access via Oracle Net to compromise Core RDBMS. Successful attacks of this...
CVE-2021-2328
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Alter Any Table privilege with network access via Oracle Net to...
CVE-2021-2328
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Alter Any Table privilege with network access via Oracle Net to...
Buffer overflow
Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Alter Any Table privilege with network access via Oracle Net to...
Design/Logic Flaw
Vulnerability in the Oracle XML DB component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Alter User privilege with network access via Oracle Net to compromise Oracle XML DB...
Design/Logic Flaw
Vulnerability in the Oracle XML DB component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Create Public Synonym privilege with network access via Oracle...
Design/Logic Flaw
Vulnerability in the Database Vault component of Oracle Database Server. Supported versions that are affected are 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having DBA privilege with network access via Oracle Net to compromise Database Vault. Successful...
Design/Logic Flaw
Vulnerability in the Oracle Application Express Data Reporter component of Oracle Database Server. The supported version that is affected is Prior to 21.1.0.00.04. Easily exploitable vulnerability allows low privileged attacker having Valid User Account privilege with network access via HTTP to...
Oracle Database Server has an unspecified vulnerability (CNVD-2021-54734)
Oracle Database Server is an object-one relational database management system that provides an open, comprehensive, and integrated approach to information management.Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c contain a security vulnerability in the Oracle Database - Enterprise...
Oracle Database Server has an unspecified vulnerability (CNVD-2021-54738)
Oracle Database Server is an object-one relational database management system that provides an open, comprehensive, and integrated approach to information management. an unspecified vulnerability exists in the Oracle Text component of Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c. A...
Oracle Database Server has an unspecified vulnerability (CNVD-2022-09810)
Oracle Database Server is a relational database management system from Oracle Corporation USA. A security vulnerability exists in the Advanced Networking Option component of Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c, which could be exploited to cause an attacker to take over...
Oracle Database Server has an unspecified vulnerability (CNVD-2022-09809)
Oracle Database Server is a relational database management system from Oracle Corporation. A security vulnerability exists in the Oracle Application Express Data Reporter component of Oracle Database Server versions prior to 21.1.0.00.04, which could be exploited by an attacker to cause...
Unspecified Vulnerability in Oracle Database Server (CNVD-2021-54735)
Oracle Database Server is an object-a relational database management system that provides an open, comprehensive, and integrated approach to information management. A security vulnerability exists in the Java VM component of Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c. An attacker...
Oracle Database Server Unauthorized Access Vulnerability (CNVD-2021-57455)
Oracle Database Server is an object-a relational database management system that provides an open, comprehensive, and integrated approach to information management. A security vulnerability exists in the Database Vault component of Oracle Database Server version 12.2.0.1, 19c. An attacker could...
Oracle Database Server has an unspecified vulnerability (CNVD-2021-54732)
Oracle Database Server is an object-one relational database management system that provides an open, comprehensive, and integrated approach to information management.Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c contain a security vulnerability in the Oracle Database - Enterprise...
Oracle Database Server has an unspecified vulnerability (CNVD-2021-54736)
Oracle Database Server is an object-one relational database management system that provides an open, comprehensive, and integrated approach to information management. a security vulnerability exists in the Oracle XML DB component of Oracle Database Server versions 12.1.0.2, 12.2.0.1, and 19c. An...
CVE-2021-2460
CVE-2021-2460 affects Oracle Database Server's Oracle Application Express Data Reporter component, with versions prior to 21.1.0.00.04 affected. The vulnerability allows a low-privileged attacker with a valid user account and network access over HTTP to compromise Data Reporter, requiring user in...
CVE-2021-2438
Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...
CVE-2021-2438
CVE-2021-2438 affects the Java VM component of Oracle Database Server. Affected versions include Oracle 12.1.0.2, 12.2.0.1, and 19c. A low-privileged attacker with Create Procedure privilege and network access via Oracle Net can exploit this to cause partial denial of service of the Java VM. The ...