66 matches found
CVE-2019-2406
Affected: Oracle Database Server Core RDBMS (versions 12.1.0.2, 12.2.0.1, 18c). Vulnerability: CVE-2019-2406 allows a high-privilege attacker with Create Session and Execute Catalog Role, over Oracle Net, to take over the Core RDBMS. Documents indicate this is referenced in the Jan 2019 CPU (Orac...
CVE-2020-5360
CVE-2020-5360 refers to a buffer under-read vulnerability in Dell BSAFE Micro Edition Suite, before version 4.5. The NVD entry notes unauthenticated remote exploitation with network access potentially causing undefined behavior or a crash (availability impact). Corporate context in connected docu...
CVE-2016-3484
CVE-2016-3484 affects Oracle Database Server’s Database Vault component, versions 11.2.0.4, 12.1.0.1, and 12.1.0.2. It is described as an unspecified local vulnerability that can affect confidentiality and integrity via unknown vectors. The vulnerability is listed alongside other Oracle CVEs in t...
CVE-2017-10261
CVE-2017-10261 concerns a vulnerability in the XML Database component of Oracle Database Server. Affected versions include 11.2.0.4 and 12.1.0.2 . The issue allows a low-privileged attacker with Create Session privilege to log into the infrastructure where XML Database runs and compromise the XML...
CVE-2016-3488
CVE-2016-3488 affects Oracle Database Server 12.1.0.2, specifically the DB Sharding component. The available connected sources confirm an unspecified vulnerability that local users can impact integrity via unknown vectors. The documentation does not specify the exact root cause, affected subcompo...
CVE-2016-3454
Technical details about CVE-2016-3454 are not publicly provided in the supplied documents. The available records describe an unspecified Java VM vulnerability in Oracle Database Server without concrete affected versions, root cause, or fixes. Monitor for future updates.
CVE-2020-29507
CVE-2020-29507 affects Dell BSAFE Crypto-C Micro Edition (before 4.1.4) and Dell BSAFE Micro Edition Suite (before 4.4). The vulnerability is described as an Improper Input Validation issue. Public references in the connected documents confirm affected versions and provide remediation guidance: u...
CVE-2016-0691
Oracle Database Server, RDBMS Security component (versions 11.2.0.4, 12.1.0.1, 12.1.0.2) is affected by CVE-2016-0691, a local vulnerability that can allow an unprivileged or low-privilege local user to compromise integrity via unknown vectors. The provided documents confirm the component and aff...
CVE-2020-5359
CVE-2020-5359 affects Dell BSAFE Micro Edition Suite, versions prior to 4.5. The vulnerability is an unchecked return value vulnerability allowing an unauthenticated remote attacker to modify and corrupt encrypted data. No explicit fix/version remediation is provided in the connected documents; m...
CVE-2023-21827
The CVE-2023-21827 entry describes a vulnerability in the Oracle Database Data Redaction component affecting Oracle Database Server 19c and 21c. The flaw allows a low-privileged attacker with Create Session privilege and network access via Oracle Net to read a subset of Data Redaction data. The a...
CVE-2016-5572
CVE-2016-5572 affects Oracle Database Server 12.1.0.2, specifically the Kernel PDB component. The vulnerability is described as local and could impact confidentiality, integrity, and availability via unknown vectors. Connected sources identify the issue within the Kernel PDB, but do not provide e...
CVE-2020-14901
CVE-2020-14901 affects Oracle Database Server, specifically the RDBMS Security component in the 19c release. The vulnerability can be exploited remotely over Oracle Net by a high-privilege attacker with Analyze Any privilege, leading to unauthorized access to or exposure of data within RDBMS Secu...
CVE-2010-0076
CVE-2010-0076 affects Oracle Database 3.2.1.00.10 (Application Express Application Builder). An unspecified vulnerability allows remote, authenticated attackers to impact confidentiality, integrity, and availability via unpublished vectors. CVSS 2.0 base score 6.0 (Network, Medium complexity, sin...
CVE-2016-0690
CVE-2016-0690 : An unspecified vulnerability in the Oracle Database Server’s RDBMS Security component affects versions 11.2.0.4, 12.1.0.1, and 12.1.0.2, permitting local attackers to impact integrity via unknown vectors. The connected documents describe it as an unspecified flaw with no concrete ...
CVE-2016-3479
CVE-2016-3479 affects Oracle Database Server Portable Clusterware in 11.2.0.4 and 12.1.0.2. The vulnerability is described as unspecified but allows remote attackers to affect availability via unknown vectors. It is listed with CVSS v3.0 base score 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) and CV...
CVE-2016-5497
CVE-2016-5497 affects Oracle Database Server 12.1.0.2 in the RDBMS Security component. It enables a local attacker to affect confidentiality, integrity, and availability via unknown vectors. CVSSv3: 6.4 (LOCAL, high complexity, high privileges). Remediation: Oracle CPU October 2016 patch update i...