154 results (0.008 seconds)

CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 0

Vulnerability in the Application Express component of Oracle Database Server. Supported versions that are affected are 5.1 and 18.2. Easily exploitable vulnerability allows low privileged attacker having Valid Account privilege with network access via HTTP to compromise Application Express. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Application Express, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Application Express accessible data as well as unauthorized read access to a subset of Application Express accessible data. • http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html •

CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users to affect integrity and availability via unknown vectors. Vulnerabilidad no especificada en el componente principal del sistema gestor de bases de datos relacionales de Oracle Database Server v10.1.0.5, v10.2.0.3, v10.2.0.4, v10.2.0.5, v11.1.0.7, v11.2.0.2 y v11.2.0.3 permite a usuarios remotos autenticados afectar a la integridad y la disponibilidad de los datos a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html http://www.securityfocus.com/bid/51453 http://www.securitytracker.com/id?1026527 https://exchange.xforce.ibmcloud.com/vulnerabilities/72468 •

CVSS: 5.0EPSS: 1%CPEs: 6EXPL: 0

Unspecified vulnerability in the Listener component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote attackers to affect availability via unknown vectors. Vulnerabilidad no especificada en el componente Listener de Oracle Database Server v10.1.0.5, v10.2.0.3, v10.2.0.4, v10.2.0.5, v11.1.0.7 y v11.2.0.2 permite a atacantes remotos afectar a la disponibilidad de los datos a través de vectores desconocidos. • http://osvdb.org/78419 http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html http://www.securityfocus.com/bid/51458 http://www.securitytracker.com/id?1026527 https://exchange.xforce.ibmcloud.com/vulnerabilities/72469 •

CVSS: 8.5EPSS: 0%CPEs: 4EXPL: 0

Unspecified vulnerability in the Oracle Text component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to CTXSYS.DRVDISP. Una vulnerabilidad no especificada en el componente Oracle Text en Database Server de Oracle versiones 10.1.0.5, 10.2.0.3, 10.2.0.4 y 11.1.0.7, permite a los usuarios autenticados remotos afectar a la confidencialidad, integridad y disponibilidad, relacionada con CTXSYS.DRVDISP. • http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html •

CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Core RDBMS en Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7 y 11.2.0.2 permite a usuarios autenticados remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html https://exchange.xforce.ibmcloud.com/vulnerabilities/70790 •