CVE-2008-2602Oracle Database Server vulnerability

4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.9%
top 24.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Database Server
Timeline
PublishedJul 15
Latest updateMay 1

Description

Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to the IMP_FULL_DATABASE role.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDoracle/database_server10.1.0.5, 10.2.0.4, 11.1.0.6+2

🔴Vulnerability Details

2
GHSA
GHSA-9g8f-cj25-pc9g: Unspecified vulnerability in the Data Pump component in Oracle Database 102022-05-01
CVEList
CVE-2008-2602: Unspecified vulnerability in the Data Pump component in Oracle Database 102008-07-15

💥Exploits & PoCs

1
Exploit-DB
ZYXEL ZyWALL Quagga/Zebra - 'Default Password' Remote Code Execution2008-03-21
CVE-2008-2602 — Oracle Database Server vulnerability | cvebase