cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-21432,https://securityvulnerability.io/vulnerability/CVE-2022-21432,Oracle Database Enterprise Edition RDBMS Security Vulnerability Affecting Multiple Versions,"A vulnerability exists within the Oracle Database - Enterprise Edition RDBMS Security component, which can be exploited by an attacker with DBA role privileges and network access. This flaw affects supported versions 12.1.0.2, 19c, and 21c, allowing unauthorized users to induce a partial denial of service (partial DOS) on the system. Successful exploitation can compromise the integrity of the RDBMS Security, putting databases at risk.",Oracle,Text,2.7,LOW,0.00044999999227002263,false,,false,false,false,,,false,false,,2022-07-19T21:06:34.000Z,0
CVE-2021-2328,https://securityvulnerability.io/vulnerability/CVE-2021-2328,Vulnerability in Oracle Text Component of Oracle Database Server,"An access control vulnerability exists in the Oracle Text component of Oracle Database Server, which can be exploited by a high-privileged attacker holding Create Any Procedure or Alter Any Table privileges. With network access through Oracle Net, the attacker can compromise Oracle Text, potentially leading to a complete takeover of the component. This security flaw impacts the confidentiality, integrity, and availability of data, underscoring the need for immediate attention and remediation.",Oracle,Text,7.2,HIGH,0.00279000005684793,false,,false,false,false,,,false,false,,2021-07-21T00:15:00.000Z,0
CVE-2021-2045,https://securityvulnerability.io/vulnerability/CVE-2021-2045,Oracle Database Server Vulnerability in Oracle Text Component,"A security issue exists in the Oracle Text component of Oracle Database Server, which could allow an attacker with low privileges and network access to compromise the functionality of Oracle Text. The vulnerability could lead to a partial denial of service, impacting the availability of this component. Supported versions vulnerable to this issue include Oracle Database Server versions 12.1.0.2, 12.2.0.1, 18c, and 19c.",Oracle,Text,3.1,LOW,0.000590000010561198,false,,false,false,false,,,false,false,,2021-01-20T14:50:04.000Z,0
CVE-2020-14734,https://securityvulnerability.io/vulnerability/CVE-2020-14734,Oracle Database Server Vulnerability in Oracle Text Component,"This vulnerability affects the Oracle Text component of Oracle Database Server, potentially allowing an unauthenticated attacker with network access to compromise Oracle Text. Exploiting this vulnerability may lead to unauthorized takeover, resulting in significant risks to data confidentiality, integrity, and availability across supported versions including 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c, and 19c. Organizations should apply the necessary patches to mitigate the associated risks.",Oracle,Text,8.1,HIGH,0.009429999627172947,false,,false,false,false,,,false,false,,2020-10-21T14:04:23.000Z,0
CVE-2019-2853,https://securityvulnerability.io/vulnerability/CVE-2019-2853,Vulnerability in Oracle Outside In Technology for Oracle Fusion Middleware,"The vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware allows unauthenticated attackers with HTTP access to compromise the system. This can result in unauthorized modifications, including updates, inserts, or deletions to sensitive data, as well as unauthorized read access to specific subsets of data. Additionally, the vulnerability may enable attackers to partially disrupt service, leading to a denial of service scenario. The risk associated with this vulnerability depends on the way data is transferred to the Outside In Technology, specifically whether it originates from the network.",Oracle,Text,6.3,MEDIUM,0.0008299999753944576,false,,false,false,false,,,false,false,,2019-07-23T23:15:00.000Z,0
CVE-2019-2776,https://securityvulnerability.io/vulnerability/CVE-2019-2776,Vulnerability in Oracle Database Server Core RDBMS Component,"An improper access control vulnerability in the Core RDBMS component of Oracle Database Server allows high-privileged attackers with the Create Any Index privilege to exploit network access via OracleNet. This may lead to significant impacts on database integrity and confidentiality, enabling them to gain unauthorized access and manipulate critical data. The exploited vulnerability can result in unauthorized updates, insertions, or deletions of data, impacting not only the Core RDBMS but also potentially affecting additional products within the Oracle ecosystem.",Oracle,Text,7.6,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2019-07-23T23:15:00.000Z,0
CVE-2019-2753,https://securityvulnerability.io/vulnerability/CVE-2019-2753,Oracle Database Server Vulnerability in Oracle Text Component,A vulnerability exists in the Oracle Text component of Oracle Database Server that allows a low-privileged attacker with network access and Create Session privileges to compromise Oracle Text. Exploitation of this vulnerability requires human interaction from a third party. Successful exploitation can lead to unauthorized read access to certain Oracle Text data and may facilitate partial denial of service. This vulnerability is significant as it impacts the confidentiality and availability of sensitive data managed within the affected database versions.,Oracle,Text,4.6,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2019-07-23T23:15:00.000Z,0
CVE-2018-3299,https://securityvulnerability.io/vulnerability/CVE-2018-3299,,"Vulnerability in the Oracle Text component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2 and 12.2.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Text. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Text, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Text as well as unauthorized update, insert or delete access to some of Oracle Text accessible data. CVSS 3.0 Base Score 8.2 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:H).",Oracle,Text,8.2,HIGH,0.0013899999903514981,false,,false,false,false,,,false,false,,2018-10-17T01:00:00.000Z,0