CVE-2019-2760

3 documents3 sources

Severity

7.0HIGH

EPSS

0.1%

top 73.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Corporation Oracle Berkeley DB Oracle Berkeley DB

Timeline

PublishedJul 23

Latest updateMay 24

Description

Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are 12.1.6.1.23, 12.1.6.1.26, 12.1.6.1.29, 12.1.6.1.36, 12.1.6.2.23 and 12.1.6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store…

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages2 packages

▶NVDoracle/berkeley_db6 versions+5

▶CVEListV5oracle_corporation/oracle_berkeley_db6 versions+5

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-p454-9h7m-w5mw: Vulnerability in the Data Store component of Oracle Berkeley DB↗2022-05-24

▶

CVEList

CVE-2019-2760: Vulnerability in the Data Store component of Oracle Berkeley DB↗2019-07-23

▶