cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2025-21553,https://securityvulnerability.io/vulnerability/CVE-2025-21553,Vulnerability in Java VM of Oracle Database Server,"A vulnerability exists in the Java VM component of Oracle Database Server allowing a low-privileged attacker with specific privileges to exploit it. This vulnerability can enable unauthorized updates, insertions, or deletions of Java VM accessible data, as well as unauthorized reading of certain data. Affected versions include Oracle Database Server 19.3 to 19.25, 21.3 to 21.16, and 23.4 to 23.6. The vulnerability can be exploited over the network via Oracle Net, highlighting the need for immediate attention from users of affected versions to safeguard their data.",Oracle,Oracle Database Server,4.2,MEDIUM,0.01,false,false,false,false,false,false,false,2025-01-21T20:53:17.298Z,0
CVE-2024-21251,https://securityvulnerability.io/vulnerability/CVE-2024-21251,Vulnerability in Java VM Component Could Allow Privilege Escalation,"Vulnerability in the Java VM component of Oracle Database Server.  Supported versions that are affected are 19.3-19.24, 21.3-21.15 and  23.4-23.5. Difficult to exploit vulnerability allows low privileged attacker having Create Session, Create Procedure privilege with network access via Oracle Net to compromise Java VM.  Successful attacks of this vulnerability can result in  unauthorized update, insert or delete access to some of Java VM accessible data. CVSS 3.1 Base Score 3.1 (Integrity impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N).",Oracle,Oracle Database Server,3.1,LOW,0.00044999999227002263,false,false,false,false,,false,false,2024-10-15T19:52:51.702Z,0
CVE-2024-21242,https://securityvulnerability.io/vulnerability/CVE-2024-21242,xml database vulnerability,"Vulnerability in the XML Database component of Oracle Database Server.  Supported versions that are affected are 19.3-19.24, 21.3-21.15 and  23.4-23.5. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via HTTP to compromise XML Database.  Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of XML Database. CVSS 3.1 Base Score 3.5 (Availability impacts).  CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L).",Oracle,Oracle Database Server,3.5,LOW,0.0004400000034365803,false,false,false,false,,false,false,2024-10-15T19:52:48.993Z,0
CVE-2024-21233,https://securityvulnerability.io/vulnerability/CVE-2024-21233,Vulnerability in Oracle Database Server Core Component,"A vulnerability in the Oracle Database Server's core component allows an attacker with low privileges and network access to exploit the system. The flaw enables unauthorized updates, inserts, or deletions of accessible data, thereby compromising data integrity. Supported versions affected include 19.3 to 19.24, 21.3 to 21.15, and 23.4 to 23.5. Users are advised to apply necessary security patches to mitigate the risk.",Oracle,Oracle Database Server,4.3,MEDIUM,0.00044999999227002263,false,false,false,false,,false,false,2024-10-15T19:52:46.224Z,0
CVE-2024-20995,https://securityvulnerability.io/vulnerability/CVE-2024-20995,Vulnerability in Oracle Database Sharding Component,"The Oracle Database Sharding component of Oracle Database Server contains an exploitable vulnerability that allows an attacker with DBA privileges and network access via Oracle Net to compromise the database. While successful exploitation requires human interaction from a different individual, the result can lead to unauthorized actions causing a partial denial of service on the Oracle Database Sharding. This vulnerability affects specific versions of the Oracle Database, including 19.3 to 19.22 and 21.3 to 21.13, making it critical for organizations to address this security concern promptly.",Oracle,Database Server,2.4,LOW,0.0004299999854993075,false,false,false,false,,false,false,2024-04-16T22:15:00.000Z,0
CVE-2016-5555,https://securityvulnerability.io/vulnerability/CVE-2016-5555,,"Unspecified vulnerability in the OJVM component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality, integrity, and availability via unknown vectors.",Oracle,Database Server,9.1,CRITICAL,0.002050000010058284,false,false,false,false,,false,false,2016-10-25T14:00:00.000Z,0
CVE-2016-3562,https://securityvulnerability.io/vulnerability/CVE-2016-3562,,Unspecified vulnerability in the RDBMS Security and SQL*Plus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA.,Oracle,Database Server,2.4,LOW,0.0006900000153109431,false,false,false,false,,false,false,2016-10-25T14:00:00.000Z,0
CVE-2016-5505,https://securityvulnerability.io/vulnerability/CVE-2016-5505,,Unspecified vulnerability in the RDBMS Programmable Interface component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors.,Oracle,Database Server,5.5,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2016-10-25T14:00:00.000Z,0
CVE-2016-5516,https://securityvulnerability.io/vulnerability/CVE-2016-5516,,Unspecified vulnerability in the Kernel PDB component in Oracle Database Server 12.1.0.2 allows local users to affect availability via unknown vectors.,Oracle,Database Server,6,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2016-10-25T14:00:00.000Z,0
CVE-2016-5498,https://securityvulnerability.io/vulnerability/CVE-2016-5498,,"Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5499.",Oracle,Database Server,3.3,LOW,0.0004299999854993075,false,false,false,false,,false,false,2016-10-25T14:00:00.000Z,0
CVE-2016-5499,https://securityvulnerability.io/vulnerability/CVE-2016-5499,,"Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5498.",Oracle,Database Server,3.3,LOW,0.0004299999854993075,false,false,false,false,,false,false,2016-10-25T14:00:00.000Z,0
CVE-2015-4921,https://securityvulnerability.io/vulnerability/CVE-2015-4921,,"Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors.",Oracle,Database Server,,,0.000859999970998615,false,false,false,false,,false,false,2016-01-21T02:00:00.000Z,0
CVE-2015-4925,https://securityvulnerability.io/vulnerability/CVE-2015-4925,,"Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.2.0.4 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.",Oracle,Database Server,,,0.0032399999909102917,false,false,false,false,,false,false,2016-01-21T02:00:00.000Z,0
CVE-2016-0472,https://securityvulnerability.io/vulnerability/CVE-2016-0472,,"Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality and availability via unknown vectors.",Oracle,Database Server,,,0.001230000052601099,false,false,false,false,,false,false,2016-01-21T02:00:00.000Z,0
CVE-2016-0461,https://securityvulnerability.io/vulnerability/CVE-2016-0461,,"Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors.",Oracle,Database Server,,,0.000750000006519258,false,false,false,false,,false,false,2016-01-21T02:00:00.000Z,0
CVE-2016-0467,https://securityvulnerability.io/vulnerability/CVE-2016-0467,,"Unspecified vulnerability in the Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors.",Oracle,Database Server,,,0.000859999970998615,false,false,false,false,,false,false,2016-01-21T02:00:00.000Z,0
CVE-2015-4923,https://securityvulnerability.io/vulnerability/CVE-2015-4923,,"Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors.",Oracle,Database Server,,,0.0009800000116229057,false,false,false,false,,false,false,2016-01-21T02:00:00.000Z,0
CVE-2016-0499,https://securityvulnerability.io/vulnerability/CVE-2016-0499,,"Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4794.",Oracle,Database Server,,,0.001990000018849969,false,false,false,false,,false,false,2016-01-21T02:00:00.000Z,0
CVE-2015-4857,https://securityvulnerability.io/vulnerability/CVE-2015-4857,,Unspecified vulnerability in the RDBMS component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.,Oracle,Database Server,,,0.000859999970998615,false,false,false,false,,false,false,2015-10-21T23:59:00.000Z,0
CVE-2015-4900,https://securityvulnerability.io/vulnerability/CVE-2015-4900,,"Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.",Oracle,Database Server,,,0.0035500000230968,false,false,false,false,,false,false,2015-10-21T23:59:00.000Z,0
CVE-2015-4888,https://securityvulnerability.io/vulnerability/CVE-2015-4888,,"Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4796.",Oracle,Database Server,,,0.0035500000230968,false,false,false,false,,false,false,2015-10-21T23:59:00.000Z,0
CVE-2015-4873,https://securityvulnerability.io/vulnerability/CVE-2015-4873,,"Unspecified vulnerability in the Database Scheduler component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors.",Oracle,Database Server,,,0.0006000000284984708,false,false,false,false,,false,false,2015-10-21T23:59:00.000Z,0
CVE-2015-4894,https://securityvulnerability.io/vulnerability/CVE-2015-4894,,"Unspecified vulnerability in the Mobile Server component in Oracle Database Mobile/Lite Server 10.3.0.3, 11.3.0.2, and 12.1.0.0 allows remote authenticated users to affect integrity and availability via unknown vectors.",Oracle,Database Mobile\/lite Server,,,0.0011099999537691474,false,false,false,false,,false,false,2015-10-21T23:59:00.000Z,0
CVE-2015-4863,https://securityvulnerability.io/vulnerability/CVE-2015-4863,,"Unspecified vulnerability in the Portable Clusterware component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.",Oracle,Database Server,,,0.013650000095367432,false,false,false,false,,false,false,2015-10-21T23:59:00.000Z,0
CVE-2015-4794,https://securityvulnerability.io/vulnerability/CVE-2015-4794,,"Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.",Oracle,Database Server,,,0.0035500000230968,false,false,false,false,,false,false,2015-10-21T21:00:00.000Z,0