391 matches found
SUSE CVE-2014-0378
Unspecified vulnerability in the Spatial component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors...
Oracle Database 12.1.0.2 Spatial Component Privilege Escalation Vulnerability
Oracle Database version 12.1.0.2 suffers from a privilege escalation vulnerability that achieves DBA access via the Spatial component. Title: Oracle Database Privilege Escalation Through Oracle Spatial Component Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2 Tested Versions:...
Oracle Database 12.1.0.2 Spatial Component Privilege Escalation
Title: Oracle Database Privilege Escalation Through Oracle Spatial Component Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2 Tested Versions: 12cR1 Risk Level: High Solution Status: Fixed in Oracle Critical Patch Update October 2021 CVE Reference: N/A, Backported in Oracle CPU...
Oracle Database Server (Oct 2022 CPU)
The 19c and 21c versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2022 CPU advisory. - Vulnerability in the Oracle Database - Machine Learning Numpy component of Oracle Database Server. The supported version that ...
Vulnerabilities fixed in Oracle Database Server
Vulnerabilities have been fixed in Oracle Database Server. The vulnerabilities allow a malicious party to carry out attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Remote code execution User rights Access to sensitive data Orac...
Vulnerabilities fixed in Oracle Database Server
Oracle has fixed vulnerabilities in the following products: Oracle Database Server Oracle Database - Enterprise Edition RDBMS Security. Oracle Spatial and Graph Oracle Universal Installer Oracle Application Express Oracle SQLcl The vulnerabilities potentially enable a malicious party to perform...
Vulnerabilities fixed in Oracle Database Server
Oracle has fixed vulnerabilities in the following products: Database - Enterprise Edition Database Configuration Assistant Spatial and Graph Application Express APEX The vulnerabilities potentially enable a malicious party to execute attacks that result in the following categories of damage:...
Improve Your Hacking Skills with 9 Python Courses for Just $39
For anyone with interest in cybersecurity, learning Python is a must. The language is used extensively in white hat hacking, and professionals use Python scripts to automate tests. It also has a use in the "soft" side of cybersecurity — like scraping the web for compromised data and detecting bug...
[SECURITY] Fedora 36 Update: libspatialite-5.0.1-12.fc36
SpatiaLite is a a library extending the basic SQLite core in order to get a full fledged Spatial DBMS, really simple and lightweight, but mostly OGC-SFS compliant...
[SECURITY] Fedora 36 Update: geos-3.10.2-4.fc36
GEOS Geometry Engine - Open Source is a C++ port of the Java Topology Suite JTS. As such, it aims to contain the complete functionality of JTS in C++. This includes all the OpenGIS "Simple Features for SQL" spatial predicate functions and spatial operators, as well as specific JTS topology...
Vulnerabilities fixed in Oracle Database Server
Oracle has fixed vulnerabilities in the following Oracle Database Server products: Database - Enterprise Edition Database Configuration Assistant Spatial and Graph Application Express APEX Engineered Systems Utilities The vulnerabilities allow a malicious person to carry out attacks execute attac...
OSV-2021-1475 Heap-buffer-overflow in derive_spatial_luma_vector_prediction
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=40107 Crash type: Heap-buffer-overflow READ 1 Crash state: derivespatiallumavectorprediction filllumamotionvectorpredictors motionvectorsandrefindices...
Vulnerabilities fixed in Oracle Database Server
Oracle has fixed vulnerabilities in the following products: Database - Enterprise Edition Spatial and Graph Application Express APEX Engineered Systems Utilities The vulnerabilities potentially enable a malicious party to execute attacks that result in the following categories of damage:...
May 25, 2021—KB5003214 (OS Builds 19041.1023, 19042.1023, and 19043.1023) Preview
May 25, 2021—KB5003214 OS Builds 19041.1023, 19042.1023, and 19043.1023 Preview 4/13/21 REMINDER Microsoft removed the Microsoft Edge Legacy desktop application that is out of support in March 2021. On April 13, 2021, we installed the new Microsoft Edge. For more information, see New Microsoft Ed...
The vulnerability of the Informix Spatial DataBlade module of the IBM Informix Dynamic Server (IDS) database management system allows attackers to enhance their privileges.
The vulnerability of the Informix Spatial DataBlade module of the IBM Informix Dynamic Server IDS database management system lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow attackers to increase their privileges...
October 1, 2020—KB4577063 (OS Build 19041.546) Preview
October 1, 2020—KB4577063 OS Build 19041.546 Preview IMPORTANT Starting in July 2020, we will resume non-security releases for Windows 10 and Windows Server, version 1809 and later. There is no change to the cumulative monthly security updates also referred to as the "B" release or Update Tuesday...
November 19, 2020—KB4586819 (OS Builds 18362.1237 and 18363.1237) Preview
November 19, 2020—KB4586819 OS Builds 18362.1237 and 18363.1237 Preview 11/10/20 IMPORTANT Because of minimal operations during the holidays and the upcoming Western new year, there won’t be a preview release known as a “C” release for the month of December 2020. There will be a monthly security...
IBM Maximo Spatial Asset Management Cross-Site Request Forgery Vulnerability
IBM Maximo Spatial Asset Management is used to visually manage spatial relationships between assets and other mapped elements. A cross-site request forgery vulnerability exists in IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, 7.6.1.0. An attacker could exploit this vulnerability ...
IBM Maximo Spatial Asset Management Web Local Storage Vulnerability
IBM Maximo Spatial Asset Management is used to visually manage the spatial relationships between assets and other mapped elements. A web page local storage vulnerability exists in IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0. An attacker could exploit the vulnerabili...
CVE-2020-4650
IBM Maximo Spatial Asset Management 7.6.0.3, 7.6.0.4, 7.6.0.5, and 7.6.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 186023...