CVE-2009-1995Oracle Database Server vulnerability

6 documents4 sources
Severity
4.9MEDIUMNVD
EPSS
1.0%
top 23.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Database Server
Timeline
PublishedOct 22
Latest updateMay 2

Description

Unspecified vulnerability in the Advanced Queuing component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_AQ_INV.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 6.8 | Impact: 4.9

Affected Packages1 packages

NVDoracle/database_server10.2.0.4, 11.1.0.7+1

🔴Vulnerability Details

2
GHSA
GHSA-c2q2-8p87-4x7h: Unspecified vulnerability in the Advanced Queuing component in Oracle Database 102022-05-02
CVEList
CVE-2009-1995: Unspecified vulnerability in the Advanced Queuing component in Oracle Database 102009-10-22

💥Exploits & PoCs

3
Exploit-DB
Virtue Book Store - 'cid' SQL Injection2009-06-08
Exploit-DB
Virtue Classifieds - 'category' SQL Injection2009-06-08
Exploit-DB
Virtue Shopping Mall - 'cid' SQL Injection2009-06-08
CVE-2009-1995 — Oracle Database Server vulnerability | cvebase