CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

BDU FSTEC•added 2020/02/11 12:0 a.m.•6 views

The vulnerability of the Core RDBMS component of the database management system Oracle Database Server allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Core RDBMS component of the database management system, Oracle Database Server, is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information using the OracleNet...

4.1CVSS5.8AI score0.00982EPSS

BDU FSTEC•added 2020/02/11 12:0 a.m.•4 views

The vulnerability of the Database Gateway for ODBC component of the Oracle Database Server allows a hacker to gain full control over the application.

The vulnerability of the Oracle Database Server ODBC driver’s database server lies in its lack of access control mechanisms. Exploiting this vulnerability allows an attacker to gain full control over the application through the OracleNet network protocol...

6CVSS6.1AI score0.00792EPSS

BDU FSTEC•added 2020/02/11 12:0 a.m.•6 views

The vulnerability of the Core RDBMS component of the database management system Oracle Database Server allows a hacker to gain access to modify, add, or delete data.

The vulnerability of the Core RDBMS component of the database management system, Oracle Database Server, is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify, add, or delete data using the OracleNet network...

3.5CVSS5.8AI score0.00784EPSS

BDU FSTEC•added 2020/02/11 12:0 a.m.•5 views

The vulnerability of the Core RDBMS component of the database management system Oracle Database Server allows a hacker to cause a service failure.

The vulnerability of the Core RDBMS component of the database management system, Oracle Database Server, is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the OracleNet network protocol...

7.7CVSS7.2AI score0.02121EPSS

BDU FSTEC•added 2020/02/11 12:0 a.m.•5 views

The vulnerability of the Database Gateway for ODBC component in the Oracle Database Server database management system allows a hacker to cause a service failure.

The vulnerability of the Oracle Database Server ODBC driver database server’s firewall is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the OracleNet network protocol...

5.9CVSS6.5AI score0.01466EPSS

BDU FSTEC•added 2020/02/06 12:0 a.m.•5 views

The vulnerability of the Oracle Application component, DBA of the Oracle Database Server system, allows a hacker to gain access to modify, add, delete data, or cause service failures.

The vulnerability of the Oracle Application component, specifically the DBA component of the Oracle Database Server system, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to modify, add, or delete data, or cause service interruptions...

3.9CVSS6.2AI score0.00717EPSS

Exploits0References2Affected Software1

7.8CVSS7.2AI score0.03235EPSS

Vulnerabilities of RSA BSAFE Micro Edition Suite and Oracle Security Service, Oracle Database Server database management system, Oracle Communications IP Service Activator network software, and Enterprise Manager Ops Center virtualization management system, caused by numerical overflows, allowing attackers to trigger service failures.

The vulnerabilities of the RSA BSAFE Micro Edition Suite and Oracle Security Service, the Oracle Database Server database management system, the Oracle Communications IP Service Activator network software, and the Enterprise Manager Ops Center virtualization management system are due to numerical...

Exploits0References6Affected Software5

6.8CVSS6.8AI score0.01869EPSS

The vulnerabilities of the RSA BSAFE Micro Edition Suite, BSAFE Crypto-C Micro Edition, and Oracle Security Service software; the Oracle Database Server database management system; the Oracle Communications IP Service Activator network software; and the Enterprise Manager Ops Center virtualization management system. These vulnerabilities involve uncontrolled resource consumption, allowing attackers to trigger service failures.

The vulnerabilities of the RSA BSAFE Micro Edition Suite, BSAFE Crypto-C Micro Edition, and Oracle Security Service, as well as the Oracle Database Server database management system, the Oracle Communications IP Service Activator network software, and the Enterprise Manager Ops Center...

Exploits0References6Affected Software6

5.9CVSS6.6AI score0.01666EPSS

Vulnerabilities of RSA BSAFE Micro Edition Suite and Oracle Security Service, Oracle Database Server, Oracle Communications IP Service Activator, and Enterprise Manager Ops Center – software solutions for virtualization management – are related to the use of cryptographic algorithms with vulnerabilities. This allows attackers to recover RSA keys.

Exploits0References6Affected Software5

5.5CVSS6.2AI score0.00426EPSS

The vulnerabilities of the RSA BSAFE Micro Edition Suite and Oracle Security Service software, the Oracle Database Server database management system, the Oracle Communications IP Service Activator network software, and the Enterprise Manager Ops Center virtualization management system are related...

Exploits0References6Affected Software5

Tenable Nessus•added 2020/01/17 12:0 a.m.•404 views

Oracle Database Server Multiple Vulnerabilities (Jan 2020 CPU)

The remote Oracle Database Server is missing the January 2020 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities: - A denial of service DoS vulnerability exists in the Core RDBMS component of Oracle Database Server. An authenticated, remote attacker can exploit this...

7.7CVSS7.6AI score0.72988EPSS

Exploits0References13

OSV•added 2020/01/15 5:15 p.m.•2 views

CVE-2020-2568

Vulnerability in the Oracle Applications DBA component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows low privileged attacker having Local Logon privilege with logon to the infrastructure where Oracle...

3.9CVSS5.8AI score0.00717EPSS

NVD•added 2020/01/15 5:15 p.m.•17 views

CVE-2020-2516

Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Materialized View, Create Table privilege with network access via OracleNet...

3.5CVSS1.6AI score0.00784EPSS

NVD•added 2020/01/15 5:15 p.m.•20 views

CVE-2020-2527

Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Index, Create Table privilege with network access via OracleNet to compromi...

4.1CVSS2.9AI score0.00982EPSS

NVD•added 2020/01/15 5:15 p.m.•22 views

CVE-2020-2512

Vulnerability in the Database Gateway for ODBC component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via OracleNet to compromise Database Gatew...

5.9CVSS5.3AI score0.01466EPSS