Database Server@11.2.0.3 Security Vulnerabilities and Issues — Database Server@11.2.0.3 CVE List

Lucene search

OracleDatabase Server11.2.0.3

83 matches found

CVE•added 2012/05/08 10:55 p.m.•321 views

CVE-2012-1675

The TNS Listener, as used in Oracle Database 11g 11.1.0.7, 11.2.0.2, and 11.2.0.3, and 10g 10.2.0.3, 10.2.0.4, and 10.2.0.5, as used in Oracle Fusion Middleware, Enterprise Manager, E-Business Suite, and possibly other products, allows remote attackers to execute arbitrary database commands by perf...

7.5CVSS9.2AI score0.92162EPSS

CVE•added 2013/07/17 1:41 p.m.•109 views

CVE-2013-3751

Unspecified vulnerability in the XML Parser component in Oracle Database Server 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS5.6AI score0.04884EPSS

CVE•added 2015/01/21 3:28 p.m.•101 views

CVE-2014-6567

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information is from the January 2015 ...

9CVSS6.6AI score0.07046EPSS

CVE•added 2012/09/21 11:55 p.m.•83 views

CVE-2012-3137

The authentication protocol in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote attackers to obtain the session key and salt for arbitrary users, which leaks information about the cryptographic hash and makes it easier to conduct brute force passwo...

6.4CVSS9.1AI score0.542EPSS

CVE•added 2013/04/17 12:19 p.m.•83 views

CVE-2013-1534

Unspecified vulnerability in the Workload Manager component in Oracle Database Server 11.2.0.2 and 11.2.0.3, when used in RAC configurations, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

10CVSS6.1AI score0.02469EPSS

CVE•added 2013/07/17 1:41 p.m.•83 views

CVE-2013-3774

Unspecified vulnerability in the Network Layer component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

7.6CVSS6AI score0.0404EPSS

CVE•added 2014/10/15 3:55 p.m.•82 views

CVE-2014-6467

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2014-6453, CVE-2014-6545...

9CVSS5.7AI score0.00564EPSS

CVE•added 2014/10/15 10:55 p.m.•79 views

CVE-2014-6545

9CVSS5.7AI score0.00564EPSS

CVE•added 2015/04/16 4:59 p.m.•78 views

CVE-2015-0457

9CVSS5.7AI score0.00572EPSS

CVE•added 2014/10/15 10:55 p.m.•75 views

CVE-2014-6546

Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS5.7AI score0.00564EPSS

CVE•added 2015/01/21 6:59 p.m.•73 views

CVE-2015-0373

Unspecified vulnerability in the OJVM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6.5CVSS5.7AI score0.00478EPSS

CVE•added 2014/10/15 3:55 p.m.•72 views

CVE-2014-6453

9CVSS5.7AI score0.00564EPSS

CVE•added 2014/10/15 3:55 p.m.•72 views

CVE-2014-6455

Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS5.7AI score0.00564EPSS

CVE•added 2015/01/21 3:28 p.m.•71 views

CVE-2014-6577

Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors. NOTE: the previous information is from the January 2015 CPU. Oracle has not comm...

6.8CVSS5.8AI score0.08779EPSS

CVE•added 2015/07/16 10:59 a.m.•69 views

CVE-2015-2599

Unspecified vulnerability in the RDBMS Scheduler component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors.

4CVSS5.5AI score0.00191EPSS

CVE•added 2014/10/15 10:55 p.m.•68 views

CVE-2014-6560

9CVSS5.7AI score0.00564EPSS

CVE•added 2012/05/03 6:55 p.m.•67 views

CVE-2012-0552

Unspecified vulnerability in the Oracle Spatial component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS5.6AI score0.00753EPSS

CVE•added 2014/04/16 1:55 a.m.•67 views

CVE-2014-2406

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to "Advisor" and "Select Any Dictionary" privileges.

8.5CVSS5.6AI score0.0058EPSS

CVE•added 2015/04/16 4:59 p.m.•67 views

CVE-2015-0483

4CVSS5.7AI score0.002EPSS

CVE•added 2014/10/15 3:55 p.m.•66 views

CVE-2014-4289

Unspecified vulnerability in the JDBC component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2014-6544.

3.6CVSS5.6AI score0.00164EPSS

CVE•added 2014/10/15 3:55 p.m.•66 views

CVE-2014-4296

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/10/15 10:55 p.m.•65 views

CVE-2014-6538

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4294, CVE-2014-4295, and CVE-2014-6563.

4CVSS5.5AI score0.00149EPSS

CVE•added 2015/01/21 3:28 p.m.•65 views

CVE-2014-6578

Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SDO_TOPO and WMSYS.LT.

6.5CVSS5.5AI score0.00424EPSS

CVE•added 2013/07/17 1:41 p.m.•64 views

CVE-2013-3760

Unspecified vulnerability in the Oracle executable component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013-3771.

7.2CVSS5.7AI score0.00127EPSS

CVE•added 2014/10/15 3:55 p.m.•64 views

CVE-2014-4299

4CVSS5.5AI score0.00169EPSS

CVE•added 2013/07/17 1:41 p.m.•63 views

CVE-2013-3771

7.2CVSS5.7AI score0.00127EPSS

CVE•added 2015/07/16 10:59 a.m.•63 views

CVE-2015-0468

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6CVSS5.7AI score0.00503EPSS

CVE•added 2013/01/17 1:55 a.m.•62 views

CVE-2012-3220

Unspecified vulnerability in the Spatial component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users with Create Session privileges to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS5.8AI score0.00611EPSS

CVE•added 2014/10/15 3:55 p.m.•61 views

CVE-2014-4290

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/11/23 7:59 p.m.•61 views

CVE-2014-6477

6.8CVSS5.6AI score0.00367EPSS

CVE•added 2014/10/15 10:55 p.m.•61 views

CVE-2014-6547

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/01/15 4:8 p.m.•60 views

CVE-2014-0378

Unspecified vulnerability in the Spatial component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

4.1CVSS5.7AI score0.00071EPSS

CVE•added 2014/10/15 3:55 p.m.•60 views

CVE-2014-4291

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/07/16 11:0 a.m.•60 views

CVE-2015-4753

Unspecified vulnerability in the RDBMS Support Tools component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality via unknown vectors.

2.1CVSS5.5AI score0.0042EPSS

CVE•added 2014/10/15 3:55 p.m.•59 views

CVE-2014-4292

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/10/15 3:55 p.m.•59 views

CVE-2014-4293

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/04/16 4:59 p.m.•59 views

CVE-2015-0479

Unspecified vulnerability in the XDK and XDB - XML Database component in Oracle Database Server 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect availability via unknown vectors.

4CVSS5.7AI score0.0051EPSS

CVE•added 2015/07/16 10:59 a.m.•59 views

CVE-2015-2629

9CVSS5.7AI score0.00572EPSS

CVE•added 2014/10/15 3:55 p.m.•58 views

CVE-2014-4297

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/10/15 3:55 p.m.•58 views

CVE-2014-6454

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/07/16 11:0 a.m.•58 views

CVE-2015-4740

Unspecified vulnerability in the RDBMS Partitioning component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6CVSS5.7AI score0.00371EPSS

CVE•added 2013/04/17 12:19 p.m.•57 views

CVE-2013-1538

Unspecified vulnerability in the Network Layer component in Oracle Database Server 11.2.0.2 and 11.2.0.3 allows remote attackers to affect availability via unknown vectors.

5CVSS6.1AI score0.00897EPSS

CVE•added 2015/01/21 6:59 p.m.•57 views

CVE-2015-0370

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect integrity via unknown vectors, a different vulnerability than CVE-2013-5858.

3.5CVSS5.7AI score0.00379EPSS

CVE•added 2012/05/03 5:55 p.m.•56 views

CVE-2012-0527

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3, and Oracle Enterprise Manager Grid Control 10.2.0.5, allows remote attackers to affect integrity via unknown vectors related to Schem...

4.3CVSS5.8AI score0.00483EPSS

CVE•added 2014/07/17 11:17 a.m.•56 views

CVE-2014-4245

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors.

3.5CVSS5.5AI score0.00751EPSS

CVE•added 2014/10/15 3:55 p.m.•56 views

CVE-2014-4295

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4294, CVE-2014-6538, and CVE-2014-6563.

4CVSS5.5AI score0.00149EPSS

CVE•added 2012/05/03 5:55 p.m.•55 views

CVE-2012-0526

4.3CVSS5.8AI score0.00483EPSS

CVE•added 2014/10/15 3:55 p.m.•55 views

CVE-2014-4310

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/01/21 2:59 p.m.•55 views

CVE-2014-6514

Unspecified vulnerability in the PL/SQL component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors.

4CVSS5.5AI score0.00191EPSS

CVE•added 2012/05/03 5:55 p.m.•54 views

CVE-2012-0525

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Database Server 11.1.0.7, 11.2.0.2, and 11.2.0.3, and Oracle Enterprise Manager Grid Control 10.2.0.5 and 11.1.0.1, allows remote authenticated users to affect confidentiality and integrity via unknown vectors rel...

4.9CVSS5.2AI score0.00209EPSS

Total number of security vulnerabilities83