Oracle GoldenGate for Big Data 19.1.x < 19.1.0.0.23 (April 2026 CPU)

According to its self-reported version number, the Oracle GoldenGate for Big Data application located on the remote host is affected by a vulnerability: - Vulnerability in the Oracle GoldenGate Big Data and Application Adapters product of Oracle GoldenGate component: Third Party Apache Avro...

Oracle Critical Patch Update, April 2026 Security Update Review

Oracle released its second quarterly edition of this year’s Critical Patch Update. The update received patches for 481 security vulnerabilities. Some of the vulnerabilities addressed in this update impact more than one product. These patches address vulnerabilities in various product families,...

Oracle GoldenGate 安全漏洞

Oracle GoldenGate is a comprehensive software package developed by Oracle Corporation in the United States, used for real-time data integration and replication in IT environments. This product supports real-time data integration, transaction-based change data capture, data services, transformatio...

EUVD-2022-26775

Malicious code in bioql PyPI...

Vulnerabilities fixed in Oracle Database products

Oracle has fixed vulnerabilities in several Database products and subsystems, including the Core database, Application Express, Autonomous Health Framework, Essbase, GoldenGate, SQL Developer and Secure Backup. A malicious party can exploit the vulnerabilities to launch attacks that can lead to t...

CVE-2022-21551

Vulnerability in Oracle GoldenGate component: Oracle GoldenGate. The supported version that is affected is 21c: prior to 21.7.0.0.0; 19c: prior to 19.1.0.0.220719. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle GoldenGate...

CVE-2022-21551

Vulnerability in Oracle GoldenGate component: Oracle GoldenGate. The supported version that is affected is 21c: prior to 21.7.0.0.0; 19c: prior to 19.1.0.0.220719. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle GoldenGate...

All Hands-on Deck: A Whole-of-Society Approach for Cybersecurity

The morning of June 9th, I was driving over the Golden Gate Bridge into San Francisco with my family. While crossing the bridge my children shared some facts about this modern engineering marvel. Each day, approx. 100,000 vehicles travel over the bridge deck, which weighs a staggering 150,000 ton...

All Hands-on Deck: A Whole-of-Society Approach for Cybersecurity

The morning of June 9th, I was driving over the Golden Gate Bridge into San Francisco with my family. While crossing the bridge my children shared some facts about this modern engineering marvel. Each day, approx. 100,000 vehicles travel over the bridge deck, which weighs a staggering 150,000 ton...

The vulnerability of the OGG Core Library, a data stream management tool from Oracle GoldenGate, allows a hacker to gain full control over the application.

The vulnerability of the OGG Core Library, a data stream management tool of Oracle GoldenGate, is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to gain full control over the application...

CVE-2022-21442

Vulnerability in Oracle GoldenGate component: OGG Core Library. The supported version that is affected is Prior to 23.1. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle GoldenGate executes to compromise Oracle GoldenGate. While the...

The vulnerability of the Manager component in the real-time data synchronization tool Oracle GoldenGate, which allows a hacker to trigger a service failure.

The vulnerability of the Manager component in the real-time data synchronization tool Oracle GoldenGate relates to the handling of the zero pointer. Exploiting this vulnerability could allow a malicious actor to cause a service failure by sending an incorrect command during the TCP connection...

The vulnerability of the Monitoring Manager component in the real-time data synchronization tool Oracle GoldenGate allows a hacker to gain full control over the application.

The vulnerability of the Monitoring Manager component in the real-time data synchronization tool Oracle GoldenGate arises from an operation that occurs outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to gain full control over the application using a TCP...

Unspecified Vulnerability in Oracle GoldenGate (CNVD-2018-24130)

Oracle GoldenGate is the United States Oracle Oracle company for real-time data integration and replication in IT environments, a comprehensive software package, which supports real-time data integration, transactional change data capture, data services, transformation and validation capabilities...

Unspecified Vulnerability in Oracle GoldenGate (CNVD-2018-24129)

Oracle GoldenGate is the United States Oracle Oracle company for real-time data integration and replication in IT environments, a comprehensive software package, which supports real-time data integration, transactional change data capture, data services, transformation and validation capabilities...

CVE-2018-2832

Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate. The supported version that is affected is 12.2.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GoldenGate. While the vulnerability is in Oracle GoldenGate...

Oracle golden gate critical vulnerability analysis-vulnerability warning-the black bar safety net

In this article, we will once again prove over-reliance on automation tool will allow people to ignore off a lot of potential danger, at the same time, we will also discuss some of the relevant Oracle Golden Gate technical level of the important weaknesses vulnerability, and to show you yet anoth...

CVE-2016-0452

Unspecified vulnerability in the Oracle GoldenGate component in Oracle GoldenGate 11.2 and 12.1.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0451...

CVE-2016-0451

Unspecified vulnerability in the Oracle GoldenGate component in Oracle GoldenGate 11.2 and 12.1.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-0452...

January 2016 Oracle Critical Patch Update 248 Patches

Oracle’s quarterly Critical Patch Updates CPU are known for their daunting volume, usually a disproportionately big number of fixes that database and system administrators have to deal with every three months. Yesterday’s CPU, however, takes the cake. Oracle pushed out the door a record 248 patch...