Lucene search
+L

42 matches found

ATTACKERKB
ATTACKERKB
added 2022/01/19 12:15 p.m.5 views

CVE-2022-21393

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

4.3CVSS6.6AI score0.00804EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2022/01/19 12:15 p.m.5 views

CVE-2022-21393

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

4.3CVSS5.8AI score0.00804EPSS
Exploits0References1
OSV
OSV
added 2021/10/20 11:17 a.m.6 views

CVE-2021-35619

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1, 19c and 21c. Difficult to exploit vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

7.1CVSS7.1AI score0.00869EPSS
Exploits0References1
Prion
Prion
added 2021/07/21 3:16 p.m.33 views

Design/Logic Flaw

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

4CVSS4AI score0.0084EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/07/21 3:16 p.m.2 views

CVE-2021-2438

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows low privileged attacker having Create Procedure privilege with network access via Oracle Net to compromise Java VM...

4.3CVSS6.4AI score0.0084EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/10/21 3:15 p.m.3 views

CVE-2020-14743

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows low privileged attacker having Create Procedure privilege with network access via multiple protocols to...

3.1CVSS6.7AI score0.00751EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/21 2:4 p.m.33 views

CVE-2020-14741

Vulnerability in the Database Filesystem component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows high privileged attacker having Resource, Create Table, Create View, Create Procedure, Dbfsrole privilege...

4.9CVSS5AI score0.0122EPSS
Exploits0References1
Symantec
Symantec
added 2020/01/14 12:0 a.m.54 views

Oracle Database Server CVE-2020-2517 Remote Security Vulnerability

Description Oracle Database Server is prone to a remote security vulnerability that exists in Database Gateway for ODBC. The vulnerability can be exploited over 'OracleNet' protocol. For an exploit to succeed, the attacker must have 'Create Procedure' and 'Create Database Link' privileges. This...

1.4AI score0.0077EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/04/18 12:0 a.m.118 views

Oracle Database Server Multiple Vulnerabilities (Apr 2019 CPU)

The remote Oracle Database Server is missing the April 2019 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities : - An authenticated local Portable Clusterware takeover vulnerability exists in the Oracle RDBMS. An authenticated, local attacker with the Grid...

9.1CVSS6.9AI score0.01713EPSS
Exploits0References7
OSV
OSV
added 2018/07/18 1:29 p.m.6 views

CVE-2018-3004

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2,12.2.0.1 and 18.2. Difficult to exploit vulnerability allows low privileged attacker having Create Session, Create Procedure privilege with network access via multiple...

5.3CVSS7.3AI score0.02666EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2017/07/20 12:0 a.m.563 views

Oracle Database Multiple Vulnerabilities (July 2017 CPU) (POODLE) (SWEET32)

The remote Oracle Database Server is missing the July 2017 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities : - A man-in-the-middle MitM information disclosure vulnerability, known as POODLE, exists due to the way SSL 3.0 handles padding bytes when decrypting...

9.9CVSS7.1AI score0.99999EPSS
Exploits14References10
NVD
NVD
added 2011/07/20 10:55 p.m.22 views

CVE-2011-0838

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to create procedure privileges...

6.5CVSS5.4AI score0.01646EPSS
Exploits0References2
Cvelist
Cvelist
added 2011/07/20 10:36 p.m.26 views

CVE-2011-0838

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to create procedure privileges...

5.4AI score0.01646EPSS
Exploits0References2
seebug.org
seebug.org
added 2007/03/21 12:0 a.m.27 views

FrontBase关系数据库服务器create procedure远程栈溢出漏洞

FrontBase是一款企业级的关系数据库服务器。 FrontBase在创建存储过程时存在栈溢出漏洞,允许攻击者获得NT AUTHORITY\SYSTEM或root用户权限。 如果攻击者通过“create procedure” SQL语句传送了超长参数的话,就可以触发这个溢出,导致内存破坏。例如,以下SQL语句: create procedure "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa...

7.1AI score
Exploits0
NVD
NVD
added 2007/03/20 10:19 a.m.17 views

CVE-2007-1511

Buffer overflow in FrontBase Relational Database Server 4.2.7 and earlier allows remote authenticated users, with privileges for creating a stored procedure, to execute arbitrary code via a CREATE PROCEDURE request with a long procedure name...

7.1CVSS7.5AI score0.05444EPSS
Exploits0References6
Cvelist
Cvelist
added 2007/03/20 10:0 a.m.23 views

CVE-2007-1511

Buffer overflow in FrontBase Relational Database Server 4.2.7 and earlier allows remote authenticated users, with privileges for creating a stored procedure, to execute arbitrary code via a CREATE PROCEDURE request with a long procedure name...

7.5AI score0.05444EPSS
Exploits0References6
seebug.org
seebug.org
added 2007/01/24 12:0 a.m.17 views

Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL/SQL Injection Exploit

No description provided by source. / Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 Joxean Koret [email protected] Privileges needed: - EXECUTECATALOGROLE - CREATE PROCEDURE / select from userroleprivs ; CREATE OR REPLACE FUNCTION F1 RETURN NUMBER AUTHID CURRENTUSER IS PRAGMA...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/01/23 12:0 a.m.15 views

Oracle 10g - SYS.KUPV$FT.ATTACH_JOB PL SQL Injection

Oracle 10g - SYS.KUPV$FT.ATTACHJOB PL SQL Injection / Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 Joxean Koret Privileges needed: - EXECUTECATALOGROLE - CREATE PROCEDURE / select from userroleprivs ; CREATE OR REPLACE FUNCTION F1 RETURN NUMBER AUTHID CURRENTUSER IS PRAGMA...

0.3AI score
Exploits0
0day.today
0day.today
added 2007/01/23 12:0 a.m.23 views

Oracle 10g SYS.KUPV$FT.ATTACH_JOB PL/SQL Injection Exploit

Exploit for multiple platform in category local exploits ========================================================== Oracle 10g SYS.KUPV$FT.ATTACHJOB PL/SQL Injection Exploit ========================================================== / Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 Joxean...

6.9AI score
Exploits0
exploitpack
exploitpack
added 2007/01/23 12:0 a.m.16 views

Oracle 10g - SYS.KUPW$WORKER.MAIN PL SQL Injection

Oracle 10g - SYS.KUPW$WORKER.MAIN PL SQL Injection / Exploit for Oracle10g R1 and R2 prior to CPU Oct 2006 Joxean Koret Privileges needed: - CREATE SESSION - CREATE PROCEDURE / select from userroleprivs ; CREATE OR REPLACE FUNCTION F1 RETURN NUMBER AUTHID CURRENTUSER IS PRAGMA...

0.4AI score
Exploits0
Rows per page
Query Builder