CVE-2017-3486
CVE-2017-3486 affects Oracle Database Server’s SQLPlus component. Affected are 11.2.0.4 and 12.1.0.2. The vulnerability is difficult to exploit but can allow a high-privileged attacker with Local Logon privilege (and user interaction) to compromise SQL Plus, with potential impact on confidentiali...