27 matches found
EUVD-2017-12607
Malware in sbrugna...
EUVD-2016-4588
Malware in sbrugna...
PT-2020-15542 · Jenkins · Jenkins Sqlplus Script Runner Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins SQLPlus Script Runner Plugin versions 2.0.12 and earlier Description: The issue concerns the Jenkins SQLPlus Script Runner Plugin, where a password provided as a command line argument is not masked in build logs. This allows users wit...
CVE-2017-3486
Vulnerability in the SQLPlus component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where SQLPlus executes to compromise...
CVE-2017-3486
Vulnerability in the SQLPlus component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where SQLPlus executes to compromise...
Design/Logic Flaw
Vulnerability in the SQLPlus component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where SQLPlus executes to compromise...
CVE-2017-3486
Vulnerability in the SQLPlus component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where SQLPlus executes to compromise...
CVE-2017-3486
Vulnerability in the SQLPlus component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where SQLPlus executes to compromise...
CVE-2017-3486
CVE-2017-3486 affects Oracle Database Server’s SQLPlus component. Affected are 11.2.0.4 and 12.1.0.2. The vulnerability is difficult to exploit but can allow a high-privileged attacker with Local Logon privilege (and user interaction) to compromise SQL Plus, with potential impact on confidentiali...
Oracle Database Server Local Vulnerability (CNVD-2017-06092)
Oracle Database Server is an object-relational database management system. It provides an open, comprehensive, and integrated approach to information management. A security vulnerability exists in the Oracle Database Server SQLPlus component, which can be exploited by remote attackers to compromi...
Oracle Database Multiple Vulnerabilities (April 2017 CPU)
The remote Oracle Database Server is missing the April 2017 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the SQLPlus component that allows a local attacker to impact confidentiality, integrity, and availability. CVE-2017-3486 ...
CVE-2016-3562
Unspecified vulnerability in the RDBMS Security and SQLPlus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA...
Security feature bypass
Unspecified vulnerability in the RDBMS Security and SQLPlus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA...
CVE-2016-3562
Unspecified vulnerability in the RDBMS Security and SQLPlus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA...
CVE-2016-3562
Unspecified vulnerability in the RDBMS Security and SQLPlus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA...
Oracle Database Multiple Vulnerabilities (October 2016 CPU)
The remote Oracle Database Server is missing the October 2016 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities : - An unspecified flaw exists in the RDBMS Security and SQLPlus component that allows an authenticated, remote attacker to disclose sensitive informatio...
Unspecified Vulnerability in Oracle Database Server RDBMS Security and SQL*Plus Components
Oracle Database Server is a set of relational database management system of the United States Oracle Oracle. The database management system provides data management, distributed processing and other functions. A remote security vulnerability exists in the RDBMS Security and SQLPlus components of...
Oracle Database Multiple Vulnerabilities (January 2009 CPU)
The remote Oracle database server is missing the January 2009 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Job Queue - Oracle OLAP - Oracle Spatial - Oracle Streams - SQLPlus Windows GUI %NASLMINLEVEL 70300 C Tenable Network...
Oracle 10g iSQLPLus Service Heap Overflow (CVE-2004-1371)
Oracle Application Server ships with an interactive and batch query tool called SQL Plus. This tool consists of a command line utility, a Windows Graphical User Interface GUI, and a web based interface. The web based interface is called iSQL Plus, it is a front end to the SQL Plus utility. The iS...
CVE-2008-5439
Unspecified vulnerability in the SQLPlus Windows GUI component in Oracle Database 10.2.0.4 allows remote authenticated users to affect confidentiality via unknown vectors...