CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnerability in the Unified Audit component of Oracle Database Server. Supported versions that are affected are 19.3-19.22 and 21.3-21.13. Easily exploitable vulnerability allows high privileged attacker having SYSDBA privilege with network access via Oracle Net to compromise Unified Audit...

4.9CVSS5.8AI score0.00228EPSS

Exploits0References1

OSV•added 2024/07/16 11:15 p.m.•0 views

CVE-2024-21184

Vulnerability in the Oracle Database RDBMS Security component of Oracle Database Server. Supported versions that are affected are 19.3-19.23. Easily exploitable vulnerability allows high privileged attacker having Execute on SYS.XSDIAG privilege with network access via Oracle Net to compromise...

7.2CVSS7.3AI score

Exploits0References1

Prion•added 2021/10/20 11:16 a.m.•13 views

Design/Logic Flaw

Vulnerability in the RDBMS Security component of Oracle Database Server. Supported versions that are affected are 12.2.0.1, 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having DBA privilege with network access via Oracle Net to compromise RDBMS Security. Successfu...

5.5CVSS5.4AI score0.00293EPSS

Exploits0References1Affected Software1

OSV•added 2017/10/19 5:29 p.m.•0 views

CVE-2017-10292

Vulnerability in the RDBMS Security component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows high privileged attacker having Create User privilege with logon to the infrastructure where RDBMS Security...

2.3CVSS7.3AI score

Exploits0References3

securityvulns•added 2009/01/16 12:0 a.m.•139 views

Digital Security Research Group [DSecRG] Advisory #DSECRG-09-003

Digital Security Research Group DSecRG Advisory DSECRG-09-003 Application: Oracle database 11G Versions Affected: Oracle 11.1.0.6 and 10.2.0.1 Vendor URL: http://oracle.com Bugs: PL/SQL Injections Exploits: YES Reported: 17.11.2008 Vendor response: 18.11.2008 Last response: 24.11.2008 Date of...

0.2AI score

Exploits0

securityvulns•added 2004/12/24 12:0 a.m.•31 views

Oracle Trigger Abuse (#NISR2122004I)

NGSSoftware Insight Security Research Advisory Name: Oracle 10g/9i Trigger Abuse Systems Affected: Oracle 10g/9i on all operating systems Severity: High risk Vendor URL: http://www.oracle.com/ Author: David Litchfield davidl at ngssoftware.com Relates to:...

1.6AI score

Exploits0

Exploit DB•added 2003/10/17 12:0 a.m.•56 views

Oracle Database Server 9.0.x - Oracle Binary Local Buffer Overflow

// source: https://www.securityfocus.com/bid/8844/info Oracle Database Server 'oracle' binary has been reported prone to a local buffer overflow vulnerability. The issue likely presents itself due to a lack of sufficient boundary checks performed on command line arguments passed to the affected...

7AI score

Exploits0

Packet Storm•added 2002/11/19 12:0 a.m.•37 views

ora-isqlplus.txt

NGSSoftware Insight Security Research Advisory Name: Oracle iSQLPlus buffer overflow Systems: Oracle Database 9i R1,2 on all operating systems Severity: High Risk Vendor URL: http://www.oracle.com/ Author: David Litchfield [email protected] Advisory URL:...

7.4AI score

Exploits0

CERT•added 2002/02/27 12:0 a.m.•13 views

Oracle 9iAS default configuration uses well-known default passwords

Overview Oracle Database Server version 9iAS installs with up to 160 distinct default login accounts. The usernames and passwords for these have been made publicly available and could be used by an attacker to gain access to an Oracle server. Description Depending on the components chosen at...

6.9AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by