Lucene search
K

105 matches found

Packet Storm
Packet Storm
added 2023/05/05 12:0 a.m.458 views

Oracle RMAN Missing Auditing

Title: CVE-2020-2978 - Oracle RMAN Audit table point in time recovery not recorded Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2, 12.2.0.1, 18c, 19c Tested Versions: 19c Risk Level: Medium Score: 4.1 Solution Status: Fixed CVE Reference: CVE-2020-2978 Author of Advisory: Emad...

4.1CVSS7.1AI score0.01242EPSS
Exploits3
CNVD
CNVD
added 2023/04/21 12:0 a.m.21 views

Unspecified Vulnerability in Oracle Database Server (CNVD-2023-71322)

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. A security vulnerability exists in Oracle Database Server versions 19c and 21c. An...

6.8CVSS6.5AI score0.00668EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/04/19 12:0 a.m.56 views

Oracle Database Server (Apr 2023 CPU)

The 19c and 21c versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the April 2023 CPU advisory. - Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Difficul...

9.8CVSS7.4AI score0.99615EPSS
Exploits10References10
NVD
NVD
added 2023/04/18 8:15 p.m.31 views

CVE-2023-21918

Vulnerability in the Oracle Database Recovery Manager component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having Local SYSDBA privilege with network access via Oracle Net to compromise Oracle...

6.8CVSS6.1AI score0.00668EPSS
Exploits0References1
OSV
OSV
added 2023/04/18 8:15 p.m.4 views

CVE-2023-21918

Vulnerability in the Oracle Database Recovery Manager component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having Local SYSDBA privilege with network access via Oracle Net to compromise Oracle...

6.8CVSS6.9AI score0.00668EPSS
Exploits0References1
Prion
Prion
added 2023/04/18 8:15 p.m.16 views

Design/Logic Flaw

Vulnerability in the Oracle Database Recovery Manager component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having Local SYSDBA privilege with network access via Oracle Net to compromise Oracle...

3.3CVSS5.9AI score0.00668EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/04/18 7:54 p.m.84 views

CVE-2023-21918

CVE-2023-21918 affects Oracle Database Server, specifically the Recovery Manager component in versions 19c and 21c . The root cause is described as insufficient input validation within Recovery Manager (per the PT-2023-2642 entry). Exploitation requires a high-privilege attacker with local SYSDBA...

6.8CVSS6.1AI score0.00668EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/04/18 12:0 a.m.7 views

Oracle Database Server 安全漏洞

Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. A security vulnerability exists in Oracle Database Server versions 19c and 21c. An...

6.8CVSS6.5AI score0.00668EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/04/18 12:0 a.m.6 views

PT-2023-2642 · Oracle · Oracle Database Server

Name of the Vulnerable Software and Affected Versions: Oracle Database Server versions 19c through 21c Description: The issue exists due to insufficient input validation in the Oracle Database Recovery Manager component of Oracle Database Server. This can be exploited by a remote attacker to caus...

6.8CVSS6.4AI score0.00668EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/08 9:44 a.m.36 views

Security Bulletin: Vulnerability in moment-timezone affects IBM VM Recovery Manager HA GUI

Summary There is vulnerability in moment-timezone opensource package which affects IBM VM Recovery Manager HA and DR GUI. Vulnerability Details IBM X-Force ID: 237819 DESCRIPTION: Node.js moment-timezone module could allow a remote attacker to execute arbitrary commands on the system, caused by a...

8.2AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/08 9:42 a.m.17 views

Security Bulletin: Vulnerability in moment-timezone affects IBM VM Recovery Manager HA GUI

Summary There is vulnerability in moment-timezone opensource package which affects IBM VM Recovery Manager HA and DR GUI. Vulnerability Details IBM X-Force ID: 238619 DESCRIPTION: Moment Moment-Timezone is vulnerable to a man-in-the-middle attack, caused by cleartext transmission of tz data durin...

6.7AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/28 3:16 p.m.18 views

Security Bulletin: Vulnerability in npm affects IBM VM Recovery Manager

Summary There is vulnerability in npm which affects IBM VM Recovery Manager Vulnerability Details Third Party Entry: 184667 DESCRIPTION: Node.js npm-registry-fetch module could allow a remote attacker to obtain sensitive information, caused by the storing of user credentials in the log file. By...

6.3AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/24 2:3 p.m.24 views

Security Bulletin: Vulnerability in moment-timezone affects IBM VM Recovery Manager DR GUI

Summary There is vulnerability in moment-timezone opensource package which affects IBM VM Recovery Manager HA and DR GUI. No impacts to VM Recovery Manager HA and DR cli. Vulnerability Details IBM X-Force ID: 237819 DESCRIPTION: Node.js moment-timezone module could allow a remote attacker to...

8.2AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/23 12:28 p.m.33 views

Security Bulletin: Vulnerability in sqlite affects IBM VM Recovery Manager DR GUI

Summary There is vulnerability in sqlite opensource package which affects IBM VM Recovery Manager HA and DR GUI. No impacts to VM Recovery Manager HA and DR cli. Vulnerability Details CVEID:CVE-2022-21227 DESCRIPTION: Node.js sqlite3 module is vulnerable to a denial of service, caused by improper...

7.5CVSS7.3AI score0.01955EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/23 7:45 a.m.23 views

Security Bulletin: Vulnerability in sqlite affects IBM VM Recovery Manager HA GUI

Summary There is vulnerability in sqlite opensource package which affects IBM VM Recovery Manager HA and DR GUI. No impacts to VM Recovery Manager HA and DR cli. Vulnerability Details CVEID:CVE-2022-21227 DESCRIPTION: Node.js sqlite3 module is vulnerable to a denial of service, caused by improper...

7.5CVSS7.3AI score0.01955EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/20 4:54 p.m.39 views

Security Bulletin: Vulnerability in async opensource package affects IBM VM Recovery Manager HA & DR GUI

Summary There is vulnerability in async opensource package which affects IBM VM Recovery Manager HA and DR GUI. No impacts to VM Recovery Manager HA and DR cli. Vulnerability Details CVEID:CVE-2021-43138 DESCRIPTION: Async could allow a remote attacker to execute arbitrary code on the system,...

7.8CVSS8.7AI score0.03346EPSS
Exploits1Affected Software1
Veeam
Veeam
added 2021/12/27 12:0 a.m.24 views

Object Properties Collection Task finishes with the "fail" status when VMware Site Recovery Manager is used for monitored vCenter server(s)

Challenge When one or more federated SSO vCenter Servers joined to VMware Site Recovery Manager are added to Veeam ONE, the Object Properties Collection Task may complete with a "fail" status. Correlated with the task completion time, an entry in the Event Logs will display "An item with the same...

6.9AI score
Exploits0Affected Software1
VMware
VMware
added 2021/12/10 12:0 a.m.62 views

VMware Response to Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

1. Impacted Products Under Evaluation VMware Horizon VMware vCenter Server VMware HCX VMware NSX-T Data Center VMware Unified Access Gateway VMware WorkspaceOne Access VMware Identity Manager VMware vRealize Operations VMware vRealize Operations Cloud Proxy VMware vRealize Automation VMware...

9.3CVSS0.4AI score0.99999EPSS
Exploits355References4Affected Software51
VMware
VMware
added 2021/12/10 12:0 a.m.153 views

VMware Response to Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

1. Impacted Products VMware Horizon VMware vCenter Server VMware HCX VMware NSX-T Data Center VMware Unified Access Gateway VMware WorkspaceOne Access VMware Identity Manager VMware vRealize Operations VMware vRealize Operations Cloud Cloud Proxy VMware vRealize Automation VMware vRealize...

9.3CVSS0.4AI score0.99999EPSS
Exploits357References4Affected Software55
VMware
VMware
added 2021/12/10 12:0 a.m.153 views

VMware Response to Apache Log4j Remote Code Execution Vulnerabilities (CVE-2021-44228, CVE-2021-45046)

1. Impacted Products VMware Horizon VMware vCenter Server VMware HCX VMware NSX-T Data Center VMware Unified Access Gateway VMware WorkspaceOne Access VMware Identity Manager VMware vRealize Operations VMware vRealize Operations Cloud Cloud Proxy VMware vRealize Automation VMware vRealize...

9.3CVSS0.4AI score0.99999EPSS
Exploits357References4Affected Software54
Rows per page
Query Builder