Database Server@12.1.0.1 Security Vulnerabilities and Issues — Database Server@12.1.0.1 CVE List

Lucene search

OracleDatabase Server12.1.0.1

74 matches found

CVE•added 2019/11/08 3:15 p.m.•230 views

CVE-2019-10219

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

6.5CVSS6AI score0.01915EPSS

CVE•added 2015/10/21 11:59 p.m.•117 views

CVE-2015-4863

Unspecified vulnerability in the Portable Clusterware component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

10CVSS8.2AI score0.02469EPSS

CVE•added 2015/01/21 3:28 p.m.•101 views

CVE-2014-6567

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information is from the January 2015 ...

9CVSS6.6AI score0.07046EPSS

CVE•added 2015/10/21 9:59 p.m.•92 views

CVE-2015-4794

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS7.8AI score0.00528EPSS

CVE•added 2016/01/21 3:0 a.m.•88 views

CVE-2016-0499

9CVSS7AI score0.01126EPSS

CVE•added 2015/10/21 9:59 p.m.•86 views

CVE-2015-4796

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2, when running on Windows, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4888.

9CVSS8AI score0.1269EPSS

CVE•added 2015/10/21 11:59 p.m.•84 views

CVE-2015-4873

Unspecified vulnerability in the Database Scheduler component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

7.2CVSS7.7AI score0.00494EPSS

CVE•added 2014/10/15 3:55 p.m.•82 views

CVE-2014-6467

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2014-6453, CVE-2014-6545...

9CVSS5.7AI score0.00564EPSS

CVE•added 2014/10/15 10:55 p.m.•79 views

CVE-2014-6545

9CVSS5.7AI score0.00564EPSS

CVE•added 2015/04/16 4:59 p.m.•78 views

CVE-2015-0457

9CVSS5.7AI score0.00572EPSS

CVE•added 2014/10/15 10:55 p.m.•75 views

CVE-2014-6546

Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS5.7AI score0.00564EPSS

CVE•added 2015/01/21 6:59 p.m.•73 views

CVE-2015-0373

Unspecified vulnerability in the OJVM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6.5CVSS5.7AI score0.00478EPSS

CVE•added 2014/10/15 3:55 p.m.•72 views

CVE-2014-6453

9CVSS5.7AI score0.00564EPSS

CVE•added 2014/10/15 3:55 p.m.•72 views

CVE-2014-6455

Unspecified vulnerability in the SQLJ component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

9CVSS5.7AI score0.00564EPSS

CVE•added 2015/01/21 3:28 p.m.•71 views

CVE-2014-6577

Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors. NOTE: the previous information is from the January 2015 CPU. Oracle has not comm...

6.8CVSS5.8AI score0.08779EPSS

CVE•added 2015/07/16 10:59 a.m.•69 views

CVE-2015-2599

Unspecified vulnerability in the RDBMS Scheduler component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors.

4CVSS5.5AI score0.00191EPSS

CVE•added 2014/10/15 10:55 p.m.•68 views

CVE-2014-6560

9CVSS5.7AI score0.00564EPSS

CVE•added 2014/04/16 1:55 a.m.•67 views

CVE-2014-2406

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to "Advisor" and "Select Any Dictionary" privileges.

8.5CVSS5.6AI score0.0058EPSS

CVE•added 2015/04/16 4:59 p.m.•67 views

CVE-2015-0483

4CVSS5.7AI score0.002EPSS

CVE•added 2016/01/21 2:59 a.m.•67 views

CVE-2015-4923

Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors.

4CVSS7.5AI score0.00355EPSS

CVE•added 2014/10/15 3:55 p.m.•66 views

CVE-2014-4289

Unspecified vulnerability in the JDBC component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2014-6544.

3.6CVSS5.6AI score0.00164EPSS

CVE•added 2014/10/15 3:55 p.m.•66 views

CVE-2014-4296

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/10/15 10:55 p.m.•65 views

CVE-2014-6538

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4294, CVE-2014-4295, and CVE-2014-6563.

4CVSS5.5AI score0.00149EPSS

CVE•added 2015/01/21 3:28 p.m.•65 views

CVE-2014-6578

Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to SDO_TOPO and WMSYS.LT.

6.5CVSS5.5AI score0.00424EPSS

CVE•added 2014/10/15 3:55 p.m.•64 views

CVE-2014-4299

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/07/16 10:59 a.m.•63 views

CVE-2015-0468

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6CVSS5.7AI score0.00503EPSS

CVE•added 2014/10/15 3:55 p.m.•61 views

CVE-2014-4290

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/11/23 7:59 p.m.•61 views

CVE-2014-6477

6.8CVSS5.6AI score0.00367EPSS

CVE•added 2014/10/15 10:55 p.m.•61 views

CVE-2014-6547

4CVSS5.5AI score0.00169EPSS

CVE•added 2016/01/21 3:0 a.m.•61 views

CVE-2016-0461

Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors.

4CVSS6.9AI score0.00414EPSS

CVE•added 2014/01/15 4:8 p.m.•60 views

CVE-2014-0378

Unspecified vulnerability in the Spatial component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

4.1CVSS5.7AI score0.00071EPSS

CVE•added 2014/07/17 11:17 a.m.•60 views

CVE-2014-4236

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.2.0.4 and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6.5CVSS5.6AI score0.01816EPSS

CVE•added 2014/10/15 3:55 p.m.•60 views

CVE-2014-4291

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/07/16 11:0 a.m.•60 views

CVE-2015-4753

Unspecified vulnerability in the RDBMS Support Tools component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality via unknown vectors.

2.1CVSS5.5AI score0.0042EPSS

CVE•added 2015/10/21 11:59 p.m.•60 views

CVE-2015-4900

Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6.5CVSS7.8AI score0.00352EPSS

CVE•added 2014/07/17 11:17 a.m.•59 views

CVE-2014-4237

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.2.0.4 and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors.

4CVSS5.5AI score0.00545EPSS

CVE•added 2014/10/15 3:55 p.m.•59 views

CVE-2014-4292

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/10/15 3:55 p.m.•59 views

CVE-2014-4293

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/04/16 4:59 p.m.•59 views

CVE-2015-0479

Unspecified vulnerability in the XDK and XDB - XML Database component in Oracle Database Server 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect availability via unknown vectors.

4CVSS5.7AI score0.0051EPSS

CVE•added 2015/07/16 10:59 a.m.•59 views

CVE-2015-2629

9CVSS5.7AI score0.00572EPSS

CVE•added 2015/10/21 11:59 p.m.•59 views

CVE-2015-4888

6.5CVSS8AI score0.1269EPSS

CVE•added 2014/10/15 3:55 p.m.•58 views

CVE-2014-4297

4CVSS5.5AI score0.00169EPSS

CVE•added 2014/10/15 3:55 p.m.•58 views

CVE-2014-6454

4CVSS5.5AI score0.00169EPSS

CVE•added 2015/07/16 11:0 a.m.•58 views

CVE-2015-4740

Unspecified vulnerability in the RDBMS Partitioning component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6CVSS5.7AI score0.00371EPSS

CVE•added 2015/01/21 6:59 p.m.•57 views

CVE-2015-0370

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect integrity via unknown vectors, a different vulnerability than CVE-2013-5858.

3.5CVSS5.7AI score0.00379EPSS

CVE•added 2016/01/21 3:0 a.m.•57 views

CVE-2016-0467

Unspecified vulnerability in the Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors.

4CVSS6.8AI score0.0015EPSS

CVE•added 2014/07/17 11:17 a.m.•56 views

CVE-2014-4245

Unspecified vulnerability in the RDBMS Core component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality via unknown vectors.

3.5CVSS5.5AI score0.00751EPSS

CVE•added 2014/10/15 3:55 p.m.•56 views

CVE-2014-4295

Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4294, CVE-2014-6538, and CVE-2014-6563.

4CVSS5.5AI score0.00149EPSS

CVE•added 2015/10/21 11:59 p.m.•56 views

CVE-2015-4857

Unspecified vulnerability in the RDBMS component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

5.5CVSS4.5AI score0.00164EPSS

CVE•added 2016/01/21 2:59 a.m.•56 views

CVE-2015-4921

Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors.

4CVSS6.8AI score0.0015EPSS

Total number of security vulnerabilities74