Database Server Security Vulnerabilities and Issues — Database Server CVE List

Lucene search

OracleDatabase Server

49 matches found

CVE•added 2011/04/20 3:14 a.m.•201 views

CVE-2011-0799

Unspecified vulnerability in the Oracle Warehouse Builder component in Oracle Database Server 10.2.0.5 (OWB), 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Warehouse Builder User Account.

6.5CVSS5.3AI score0.00375EPSS

CVE•added 2011/10/18 10:55 p.m.•135 views

CVE-2011-2301

Unspecified vulnerability in the Oracle Text component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to CTXSYS.DRVDISP.

8.5CVSS5.7AI score0.00743EPSS

CVE•added 2011/01/19 4:0 p.m.•112 views

CVE-2010-3600

Unspecified vulnerability in the Client System Analyzer component in Oracle Database Server 11.1.0.7 and 11.2.0.1 and Enterprise Manager Grid Control 10.2.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtai...

7.5CVSS6.2AI score0.75907EPSS

CVE•added 2011/07/20 10:55 p.m.•101 views

CVE-2011-0811

Unspecified vulnerability in the Enterprise Config Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5, allows local users to affect confidentiality via unknown vectors.

4.9CVSS5.5AI score0.00431EPSS

CVE•added 2011/07/20 11:55 p.m.•100 views

CVE-2011-2257

Unspecified vulnerability in the Database Target Type Menus component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality, i...

6.8CVSS6.2AI score0.00485EPSS

CVE•added 2011/07/20 11:55 p.m.•97 views

CVE-2011-2239

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability, related to XMLSEQ_IMP_T.

7.1CVSS5.8AI score0.00369EPSS

CVE•added 2011/07/20 10:55 p.m.•95 views

CVE-2011-0822

Unspecified vulnerability in the Streams, AQ & Replication Mgmt component in Oracle Database Server 10.1.0.5 and 10.2.0.3, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

6.8CVSS8.4AI score0.02118EPSS

CVE•added 2011/04/20 3:14 a.m.•94 views

CVE-2011-0792

Unspecified vulnerability in the Oracle Warehouse Builder component in Oracle Database Server 10.2.0.5 (OWB) and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Dimensional Data Modeling.

6.5CVSS5.4AI score0.00375EPSS

CVE•added 2011/07/20 10:55 p.m.•93 views

CVE-2011-0831

Unspecified vulnerability in the Enterprise Config Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote authenticated users to affect confidentiality a...

5.5CVSS5.5AI score0.00197EPSS

CVE•added 2011/07/20 10:55 p.m.•93 views

CVE-2011-0881

Unspecified vulnerability in the EMCTL component in Oracle Database Server 10.2.0.3, 10.2.0.4, and 11.1.0.7, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.1AI score0.0042EPSS

CVE•added 2011/07/20 10:55 p.m.•92 views

CVE-2011-0870

Unspecified vulnerability in the Schema Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect confidentiality, integrity, and availa...

6.8CVSS8.4AI score0.02118EPSS

CVE•added 2011/07/20 10:55 p.m.•91 views

CVE-2011-0877

Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.1AI score0.00309EPSS

CVE•added 2011/07/20 11:55 p.m.•90 views

CVE-2011-2253

7.1CVSS5.8AI score0.00369EPSS

CVE•added 2011/07/20 10:55 p.m.•86 views

CVE-2011-0832

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2011-0835 and CVE-2011-0880.

6CVSS5.7AI score0.00429EPSS

CVE•added 2011/07/20 10:55 p.m.•85 views

CVE-2011-0816

Unspecified vulnerability in the CMDB Metadata & Instance APIs component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote authenticated users to affect confidentiality ...

5.5CVSS5.5AI score0.00197EPSS

CVE•added 2011/07/20 10:55 p.m.•85 views

CVE-2011-0835

6.5CVSS5.7AI score0.00429EPSS

CVE•added 2011/07/20 10:55 p.m.•85 views

CVE-2011-0848

Unspecified vulnerability in the Security Framework component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect confidentiality, integrity, and avail...

6.8CVSS6AI score0.00485EPSS

CVE•added 2011/07/20 10:55 p.m.•85 views

CVE-2011-0879

Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.1AI score0.00309EPSS

CVE•added 2011/04/20 3:14 a.m.•84 views

CVE-2011-0785

Unspecified vulnerability in the Oracle Help component in Oracle Database Server 11.1.0.7, 11.2.0.1, 11.2.0.2, 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, and 10.1.0.5; and Oracle Fusion Middleware 11.1.1.2.0, 11.1.1.3.0, and 11.1.1.4.0 allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6AI score0.00229EPSS

CVE•added 2011/07/20 10:55 p.m.•84 views

CVE-2011-0852

Unspecified vulnerability in the Security Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4; and Oracle Enterprise Manager Grid Control 10.1.0.6; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Audit Adminis...

6.8CVSS6AI score0.00485EPSS

CVE•added 2011/01/19 4:0 p.m.•83 views

CVE-2010-3590

Unspecified vulnerability in the Oracle Spatial component in Oracle Database Server 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality and integrity, related to MDSYS.

4.9CVSS5.5AI score0.00441EPSS

CVE•added 2011/01/19 4:0 p.m.•83 views

CVE-2010-4420

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows local users to affect confidentiality and integrity via unknown vectors.

3.6CVSS5.5AI score0.00088EPSS

CVE•added 2011/07/20 10:55 p.m.•83 views

CVE-2011-0880

6.5CVSS5.7AI score0.00429EPSS

CVE•added 2011/07/20 10:55 p.m.•83 views

CVE-2011-2238

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect integrity, related to DBMS_SYS_SQL.

4CVSS5.8AI score0.00181EPSS

CVE•added 2011/04/20 3:14 a.m.•82 views

CVE-2011-0806

Unspecified vulnerability in the Network Foundation component in Oracle Database Server 10.1.0.5, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2, when running on Windows, allows remote attackers to affect availability via unknown vectors.

5CVSS6.1AI score0.00705EPSS

CVE•added 2011/07/20 10:55 p.m.•82 views

CVE-2011-0830

Unspecified vulnerability in the Event Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors related to Rules Management UI.

4.3CVSS5.9AI score0.00309EPSS

CVE•added 2011/07/20 10:55 p.m.•82 views

CVE-2011-2230

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect availability via unknown vectors.

5CVSS6.2AI score0.00499EPSS

CVE•added 2011/07/20 11:55 p.m.•82 views

CVE-2011-2248

Unspecified vulnerability in the SQL Performance Advisories/UIs component in Oracle Database Server 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality, integrity, and availability, related ...

6.8CVSS6.8AI score0.00658EPSS

CVE•added 2011/01/19 4:0 p.m.•81 views

CVE-2010-4413

Unspecified vulnerability in the Scheduler Agent component in Oracle Database Server 11.1.0.7 and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

4.3CVSS5.7AI score0.00971EPSS

CVE•added 2011/01/19 4:0 p.m.•81 views

CVE-2010-4423

Unspecified vulnerability in the Cluster Verify Utility component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1, when running on Windows, allows local users to affect confidentiality, integrity, and availability via unknown vectors.

6.9CVSS5.7AI score0.00113EPSS

CVE•added 2011/04/20 3:14 a.m.•81 views

CVE-2011-0787

Unspecified vulnerability in the Application Service Level Management component in Oracle Database Server 11.1.0.7 and Enterprise Manager Grid Control allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Service Level Agreements.

5.5CVSS5.2AI score0.00164EPSS

CVE•added 2011/04/20 3:14 a.m.•81 views

CVE-2011-0793

3.6CVSS5.8AI score0.00344EPSS

CVE•added 2011/04/20 3:14 a.m.•81 views

CVE-2011-0805

Unspecified vulnerability in the UIX component in Oracle Database Server 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect integrity via unknown vectors.

4.3CVSS6.2AI score0.00229EPSS

CVE•added 2011/07/20 10:55 p.m.•81 views

CVE-2011-2232

Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 11.1.0.7, and 11.2.0.1, and Oracle Fusion Middleware 10.1.3.5, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6CVSS5.7AI score0.00265EPSS

CVE•added 2011/04/20 3:14 a.m.•80 views

CVE-2011-0804

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

3.6CVSS5.5AI score0.00164EPSS

CVE•added 2011/07/20 10:55 p.m.•80 views

CVE-2011-0876

Unspecified vulnerability in the Enterprise Manager Console component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect integrity via unknown vectors...

4.3CVSS5.9AI score0.00309EPSS

CVE•added 2011/07/20 11:55 p.m.•80 views

CVE-2011-2242

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.2.0.1 and 11.2.0.2 allows local users to affect confidentiality, related to XML DB FTP.

1.3CVSS5.8AI score0.00304EPSS

CVE•added 2011/07/20 10:55 p.m.•78 views

CVE-2011-0882

Unspecified vulnerability in the Content Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7; and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality, integrity, and availability via unknown...

6.8CVSS6AI score0.00485EPSS

CVE•added 2011/07/20 11:55 p.m.•78 views

CVE-2011-2244

Unspecified vulnerability in the Security Framework component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality and integrity via...

6.4CVSS5.7AI score0.00276EPSS

CVE•added 2011/07/20 11:55 p.m.•76 views

CVE-2011-2240

Unspecified vulnerability in the Oracle Universal Installer component in Oracle Database Server 10.1.0.5 allows local users to affect confidentiality via unknown vectors.

1.7CVSS5.5AI score0.00392EPSS

CVE•added 2011/07/20 10:55 p.m.•75 views

CVE-2011-2231

Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1, Oracle Fusion Middleware 10.1.3.5, allows remote attackers to affect availability via unknown vectors.

4.3CVSS6.2AI score0.00499EPSS

CVE•added 2011/01/19 4:0 p.m.•74 views

CVE-2010-4421

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

6.8CVSS6.2AI score0.01203EPSS

CVE•added 2011/07/20 10:55 p.m.•73 views

CVE-2011-0875

Unspecified vulnerability in the EMCTL component in Oracle Database Server 11.1.0.7 and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

5.5CVSS5.5AI score0.00302EPSS

CVE•added 2011/07/20 11:55 p.m.•73 views

CVE-2011-2243

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7.3, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect integrity, related to SYSDBA.

3.5CVSS5.8AI score0.00181EPSS

CVE•added 2011/10/18 10:55 p.m.•73 views

CVE-2011-3525

Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2 and 4.0 allows remote authenticated users to affect confidentiality, integrity, and availability, related to APEX developer user.

6.5CVSS5.8AI score0.00874EPSS

CVE•added 2011/07/20 10:55 p.m.•72 views

CVE-2011-0838

6.5CVSS5.6AI score0.00265EPSS

CVE•added 2011/10/18 10:55 p.m.•58 views

CVE-2011-3512

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

6.5CVSS5.7AI score0.00509EPSS

CVE•added 2011/10/18 10:55 p.m.•45 views

CVE-2011-2322

Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows remote authenticated users to affect integrity and availability, related to SYSDBA.

3.6CVSS5.7AI score0.00344EPSS

CVE•added 2011/10/18 10:55 p.m.•38 views

CVE-2011-3511

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect integrity and availability via unknown vectors related to Privileged Account.

3.6CVSS5.5AI score0.00344EPSS