Lucene search
K

3671 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.8 views

SUSE CVE-2021-35619

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c. Difficult to exploit vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

7.1CVSS8AI score0.00869EPSS
Exploits0References3
CNVD
CNVD
added 2023/02/14 12:0 a.m.8 views

Oracle Database Server Java VM Component Denial of Service Vulnerability

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. Oracle Database Server has a denial of service vulnerability that can be exploited by a...

4.3CVSS6.3AI score0.00561EPSS
Exploits0References1
0day.today
0day.today
added 2023/02/03 12:0 a.m.313 views

Oracle Database 12.1.0.2 Spatial Component Privilege Escalation Vulnerability

Oracle Database version 12.1.0.2 suffers from a privilege escalation vulnerability that achieves DBA access via the Spatial component. Title: Oracle Database Privilege Escalation Through Oracle Spatial Component Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2 Tested Versions:...

1.2AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2023/02/03 12:0 a.m.6 views

The vulnerability of the Oracle Database RDBMS Security component of the Oracle Database Server allows a perpetrator to gain unauthorized access to protected data or to have control over the modification, addition, or deletion of protected data.

The vulnerability of the Oracle Database RDBMS Security component of the Oracle Database Server system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected data or to modify, add, or...

7.5CVSS6.9AI score0.00445EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/01/31 12:0 a.m.4 views

The vulnerability of the Oracle Data Provider for .NET component in the Oracle Database Server database management system allows a hacker to gain full control over the application.

The vulnerability of the Oracle Data Provider for .NET component in the Oracle Database Server database management system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application using the TCPS protocol...

7.6CVSS6.9AI score0.00594EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/01/20 12:0 a.m.139 views

Oracle Database Server for Windows (Jan 2023 CPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Oracle Data Provider for .NET component of Oracle Database Server. Supported versions that are affected are 19c and...

9.8CVSS7.2AI score0.99931EPSS
Exploits48References19
Tenable Nessus
Tenable Nessus
added 2023/01/20 12:0 a.m.214 views

Oracle Database Server for Unix (Jan 2023 CPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Oracle Database - Machine Learning for Python Python component of Oracle Database Server. The supported version that ...

9.8CVSS7.2AI score0.99931EPSS
Exploits48References18
Qualys Blog
Qualys Blog
added 2023/01/18 12:43 a.m.126 views

The January 2023 Oracle Critical Patch Update

This Oracle Critical Patch Update contains a group of patches for multiple security vulnerabilities that address 327 new security patches. Some of the vulnerabilities addressed this month impact various products. These patches address vulnerabilities in Oracle code and in third-party components...

10CVSS1.2AI score0.99931EPSS
Exploits142
Github Security Blog
Github Security Blog
added 2023/01/18 12:30 a.m.53 views

Component takeover in Oracle Data Provider for .NET

Vulnerability in the Oracle Data Provider for .NET component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TCPS to compromise Oracle Data Provider for .NET. Successful...

7.5CVSS7.1AI score0.00594EPSS
Exploits0References5Affected Software2
OSV
OSV
added 2023/01/18 12:30 a.m.41 views

GHSA-5PM2-9MR2-3FRQ Component takeover in Oracle Data Provider for .NET

Vulnerability in the Oracle Data Provider for .NET component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TCPS to compromise Oracle Data Provider for .NET. Successful...

7.5CVSS7.5AI score0.00594EPSS
Exploits0References4
OSV
OSV
added 2023/01/18 12:15 a.m.3 views

CVE-2023-21893

Vulnerability in the Oracle Data Provider for .NET component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TCPS to compromise Oracle Data Provider for .NET. Successful...

7.5CVSS7.2AI score0.00594EPSS
Exploits0References1
OSV
OSV
added 2023/01/18 12:15 a.m.5 views

CVE-2023-21827

Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

4.3CVSS6.6AI score0.00453EPSS
Exploits0References1
NVD
NVD
added 2023/01/18 12:15 a.m.19 views

CVE-2023-21827

Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

4.3CVSS3.2AI score0.00453EPSS
Exploits0References1
NVD
NVD
added 2023/01/18 12:15 a.m.22 views

CVE-2023-21829

Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

6.3CVSS5.5AI score0.00445EPSS
Exploits0References1
OSV
OSV
added 2023/01/18 12:15 a.m.3 views

CVE-2023-21829

Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

6.3CVSS7.3AI score0.00445EPSS
Exploits0References1
OSV
OSV
added 2023/01/18 12:15 a.m.2 views

CVE-2022-39429

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of...

4.3CVSS5.8AI score0.00561EPSS
Exploits0References1
NVD
NVD
added 2023/01/18 12:15 a.m.41 views

CVE-2022-39429

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of...

4.3CVSS3.7AI score0.00561EPSS
Exploits0References1
Prion
Prion
added 2023/01/18 12:15 a.m.21 views

Design/Logic Flaw

Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

4CVSS3.4AI score0.00453EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/01/18 12:15 a.m.22 views

Design/Logic Flaw

Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

4.9CVSS5.6AI score0.00445EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/01/18 12:15 a.m.30 views

Design/Logic Flaw

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM. Successful attacks of...

4CVSS4AI score0.00561EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder