cbcvebase.

Oracle Database Server vulnerabilities

506 known vulnerabilities affecting oracle/database_server.

Total CVEs
506
CISA KEV
0
Public exploits
29
Exploited in wild
0
Severity breakdown
CRITICAL113HIGH73MEDIUM250LOW70

Vulnerabilities

Page 12 of 26
CVE-2011-2301HIGHCVSS 8.5v10.1.0.5v10.2.0.3+2 more2011-10-18
CVE-2011-2301 [HIGH] CVE-2011-2301: Unspecified vulnerability in the Oracle Text component in Oracle Database Server 10.1.0.5, 10.2.0.3, Unspecified vulnerability in the Oracle Text component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to CTXSYS.DRVDISP.
nvd
CVE-2011-3525MEDIUMCVSS 6.5v3.2v4.02011-10-18
CVE-2011-3525 [MEDIUM] CVE-2011-3525: Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2 and 4.0 Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2 and 4.0 allows remote authenticated users to affect confidentiality, integrity, and availability, related to APEX developer user.
nvd
CVE-2011-3512MEDIUMCVSS 6.5v10.1.0.5v10.2.0.3+4 more2011-10-18
CVE-2011-3512 [MEDIUM] CVE-2011-3512: Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
nvd
CVE-2011-2322LOWCVSS 3.6v11.1.0.72011-10-18
CVE-2011-2322 [LOW] CVE-2011-2322: Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows remote authenticated users to affect integrity and availability, related to SYSDBA.
nvd
CVE-2011-3511LOWCVSS 3.6v10.2.0.3v10.2.0.4+3 more2011-10-18
CVE-2011-3511 [LOW] CVE-2011-3511: Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0 Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect integrity and availability via unknown vectors related to Privileged Account.
nvd
CVE-2011-2239HIGHCVSS 7.1v10.2.0.3v10.2.0.4+4 more2011-07-20
CVE-2011-2239 [HIGH] CVE-2011-2239: Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability, related to XMLSEQ_IMP_T.
nvd
CVE-2011-2253HIGHCVSS 7.1v10.2.0.3v10.2.0.4+4 more2011-07-20
CVE-2011-2253 [HIGH] CVE-2011-2253: Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYSDBA.
nvd
CVE-2011-2257MEDIUMCVSS 6.8v10.1.0.5v10.2.0.3+5 more2011-07-20
CVE-2011-2257 [MEDIUM] CVE-2011-2257: Unspecified vulnerability in the Database Target Type Menus component in Oracle Database Server 10.1 Unspecified vulnerability in the Database Target Type Menus component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
nvd
CVE-2011-0879MEDIUMCVSS 4.3v10.1.0.5v10.2.0.3+5 more2011-07-20
CVE-2011-0879 [MEDIUM] CVE-2011-0879: Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 1 Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect integrity via unknown vectors.
nvd
CVE-2011-0852MEDIUMCVSS 6.8v10.1.0.5v10.2.0.3+1 more2011-07-20
CVE-2011-0852 [MEDIUM] CVE-2011-0852: Unspecified vulnerability in the Security Management component in Oracle Database Server 10.1.0.5, 1 Unspecified vulnerability in the Security Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4; and Oracle Enterprise Manager Grid Control 10.1.0.6; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Audit Administration.
nvd
CVE-2011-0876MEDIUMCVSS 4.3v10.1.0.5v10.2.0.3+5 more2011-07-20
CVE-2011-0876 [MEDIUM] CVE-2011-0876: Unspecified vulnerability in the Enterprise Manager Console component in Oracle Database Server 10.1 Unspecified vulnerability in the Enterprise Manager Console component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect integrity via unknown vectors related to Security.
nvd
CVE-2011-0882MEDIUMCVSS 6.8v10.1.0.5v10.2.0.3+2 more2011-07-20
CVE-2011-0882 [MEDIUM] CVE-2011-0882: Unspecified vulnerability in the Content Management component in Oracle Database Server 10.1.0.5, 10 Unspecified vulnerability in the Content Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7; and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Scheduler.
nvd
CVE-2011-0822MEDIUMCVSS 6.8v10.1.0.5v10.2.0.32011-07-20
CVE-2011-0822 [MEDIUM] CVE-2011-0822: Unspecified vulnerability in the Streams, AQ & Replication Mgmt component in Oracle Database Server Unspecified vulnerability in the Streams, AQ & Replication Mgmt component in Oracle Database Server 10.1.0.5 and 10.2.0.3, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
nvd
CVE-2011-0848MEDIUMCVSS 6.8v10.1.0.5v10.2.0.3+5 more2011-07-20
CVE-2011-0848 [MEDIUM] CVE-2011-0848: Unspecified vulnerability in the Security Framework component in Oracle Database Server 10.1.0.5, 10 Unspecified vulnerability in the Security Framework component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to User Model.
nvd
CVE-2011-0875MEDIUMCVSS 5.5v11.1.0.72011-07-20
CVE-2011-0875 [MEDIUM] CVE-2011-0875: Unspecified vulnerability in the EMCTL component in Oracle Database Server 11.1.0.7 and Oracle Enter Unspecified vulnerability in the EMCTL component in Oracle Database Server 11.1.0.7 and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
nvd
CVE-2011-0816MEDIUMCVSS 5.5v10.1.0.5v10.2.0.3+5 more2011-07-20
CVE-2011-0816 [MEDIUM] CVE-2011-0816: Unspecified vulnerability in the CMDB Metadata & Instance APIs component in Oracle Database Server 1 Unspecified vulnerability in the CMDB Metadata & Instance APIs component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
nvd
CVE-2011-0877MEDIUMCVSS 4.3v10.1.0.5v10.2.0.3+1 more2011-07-20
CVE-2011-0877 [MEDIUM] CVE-2011-0877: Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 1 Unspecified vulnerability in the Instance Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors.
nvd
CVE-2011-0881MEDIUMCVSS 4.3v10.2.0.3v10.2.0.4+1 more2011-07-20
CVE-2011-0881 [MEDIUM] CVE-2011-0881: Unspecified vulnerability in the EMCTL component in Oracle Database Server 10.2.0.3, 10.2.0.4, and 1 Unspecified vulnerability in the EMCTL component in Oracle Database Server 10.2.0.3, 10.2.0.4, and 11.1.0.7, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect integrity via unknown vectors.
nvd
CVE-2011-0835MEDIUMCVSS 6.5v11.1.0.7v11.2.0.1+1 more2011-07-20
CVE-2011-0835 [MEDIUM] CVE-2011-0835: Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.1, Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2011-0832 and CVE-2011-0880.
nvd
CVE-2011-0811MEDIUMCVSS 4.9v10.1.0.5v10.2.0.3+1 more2011-07-20
CVE-2011-0811 [MEDIUM] CVE-2011-0811: Unspecified vulnerability in the Enterprise Config Management component in Oracle Database Server 10 Unspecified vulnerability in the Enterprise Config Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5, allows local users to affect confidentiality via unknown vectors.
nvd
← Previous12 / 26Next →