Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-1019Oracle Database Server vulnerability

4 documents4 sources
Severity
7.5HIGHNVD
EPSS
9.5%
top 7.16%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Oracle Database Server
Timeline
PublishedJul 14
Latest updateMay 2

Description

Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDoracle/database_server5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-vqrr-rq4g-vh9j: Unspecified vulnerability in the Network Authentication component in Oracle Database 92022-05-02
CVEList
CVE-2009-1019: Unspecified vulnerability in the Network Authentication component in Oracle Database 92009-07-14

💥Exploits & PoCs

1
Exploit-DB
Oracle 9i/10g Database - Remote Network Authentication2009-06-14
CVE-2009-1019 — Oracle Database Server vulnerability | cvebase