CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SQL injection vulnerability in the Upgrade/Downgrade component DBMSUPGRADEINTERNAL for Oracle Database 10.1.0.5 allows remote authenticated users to execute arbitrary SQL commands via unknown vectors, aka DB07. NOTE: as of 20070424, Oracle has not disputed reliable claims that DB07 is actually fo...

7.5CVSS8AI score0.02022EPSS

Exploits0References11Affected Software1

CVE•added 2007/04/18 6:0 p.m.•48 views

CVE-2007-2118

The CVE-2007-2118 entry concerns Oracle Database Upgrade/Downgrade component vulnerabilities in 9.0.1.5 and 9.2.0.7. The description indicates an unspecified vulnerability with unknown impact/attack vectors, and a note that claims this may be a buffer overflow in the mig utility. No additional te...

7.5CVSS6.8AI score0.03563EPSS

Exploits0References9Affected Software1

CVE•added 2007/04/18 6:0 p.m.•51 views

CVE-2007-2113

CVE-2007-2113 affects Oracle Database (Upgrade/Downgrade component, DBMS_UPGRADE_INTERNAL) and is described as a SQL injection vulnerability in Oracle Database 10.1.0.5. The issue allows remote authenticated users to execute arbitrary SQL via unknown vectors; the description notes this DB07 may c...

7.5CVSS7.7AI score0.02022EPSS

Exploits0References11Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by