3 matches found
Security Bulletin: IBM Security Verify Information Queue uses an Oracle JDBC jar with multiple vulnerabilities (CVE-2019-2444, CVE-2019-2619, CVE-2017-10321, CVE-2017-10202)
Summary The connect image in IBM Security Verify Information Queue ISIQ v10.0.2 uses an older version of the Oracle JDBC jar file that has multiple vulnerabilities. ISIQ v10.0.3 upgraded its connect image to include a newer Oracle JDBC jar that remediates the vulnerabilities. CVE-2019-2444,...
CVE-2019-2619
CVE-2019-2619 affects Oracle Database Server Portable Clusterware. Affected versions: 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18c. Root cause: vulnerability in Portable Clusterware that can be exploited by a Grid Infrastructure User with local logon to compromise Portable Clusterware and potentially imp...
Oracle Database Server Multiple Vulnerabilities (Apr 2019 CPU)
The remote Oracle Database Server is missing the April 2019 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities : - An authenticated local Portable Clusterware takeover vulnerability exists in the Oracle RDBMS. An authenticated, local attacker with the Grid...