Oracle GoldenGate denial of service

A vulnerability classified as critical was found in Oracle GoldenGate (the affected version is unknown). This vulnerability affects an unknown code block of the component GoldenGate. Upgrading eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Field	07/20/2022 08:15 AM	08/06/2022 04:50 PM	08/06/2022 04:57 PM
vendor	Oracle	Oracle	Oracle
name	GoldenGate	GoldenGate	GoldenGate
cve	CVE-2021-3749	CVE-2021-3749	CVE-2021-3749
component	GoldenGate	GoldenGate	GoldenGate
risk	2	2	2
cwe	404 (denial of service)	404 (denial of service)	404 (denial of service)
cvss3_vuldb_av	N	N	N
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_pr	N	N	N
cvss3_vuldb_ui	N	N	N
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	N	N	N
cvss3_vuldb_i	N	N	N
cvss3_vuldb_a	H	H	H
cvss3_vuldb_rc	C	C	C
cvss3_vuldb_rl	O	O	O
url	https://www.oracle.com/security-alerts/cpujul2022.html	https://www.oracle.com/security-alerts/cpujul2022.html	https://www.oracle.com/security-alerts/cpujul2022.html
date	1658181600 (07/19/2022)	1658181600 (07/19/2022)	1658181600 (07/19/2022)
identifier	Oracle Critical Patch Update Advisory - July 2022	Oracle Critical Patch Update Advisory - July 2022	Oracle Critical Patch Update Advisory - July 2022
date	1658181600 (07/19/2022)	1658181600 (07/19/2022)	1658181600 (07/19/2022)
name	Upgrade	Upgrade	Upgrade
cvss2_vuldb_av	N	N	N
cvss2_vuldb_ac	L	L	L
cvss2_vuldb_au	N	N	N
cvss2_vuldb_ci	N	N	N
cvss2_vuldb_ii	N	N	N
cvss2_vuldb_ai	C	C	C
cvss2_vuldb_rc	C	C	C
cvss2_vuldb_rl	OF	OF	OF
cvss2_vuldb_e	ND	ND	ND
cvss3_vuldb_e	X	X	X
cvss2_vuldb_basescore	7.8	7.8	7.8
cvss2_vuldb_tempscore	6.8	6.8	6.8
cvss3_vuldb_basescore	7.5	7.5	7.5
cvss3_vuldb_tempscore	7.2	7.2	7.2
cvss3_meta_basescore	7.5	7.5	7.5
cvss3_meta_tempscore	7.2	7.2	7.4
price_0day	$5k-$25k	$5k-$25k	$5k-$25k
patch_url		https://github.com/axios/axios/commit/5b457116e31db0e88fede6c428e969e87f290929	https://github.com/axios/axios/commit/5b457116e31db0e88fede6c428e969e87f290929
cve_assigned		1630274400 (08/30/2021)	1630274400 (08/30/2021)
cve_nvd_summary		axios is vulnerable to Inefficient Regular Expression Complexity	axios is vulnerable to Inefficient Regular Expression Complexity
cvss3_nvd_av			N
cvss3_nvd_ac			L
cvss3_nvd_pr			N
cvss3_nvd_ui			N
cvss3_nvd_s			U
cvss3_nvd_c			N
cvss3_nvd_i			N
cvss3_nvd_a			H
cvss2_nvd_av			N
cvss2_nvd_ac			L
cvss2_nvd_au			N
cvss2_nvd_ci			N
cvss2_nvd_ii			N
cvss2_nvd_ai			C
cvss3_cna_av			N
cvss3_cna_ac			L
cvss3_cna_pr			N
cvss3_cna_ui			N
cvss3_cna_s			U
cvss3_cna_c			N
cvss3_cna_i			N
cvss3_cna_a			H
cve_cna			huntr.dev
cvss2_nvd_basescore			7.8
cvss3_nvd_basescore			7.5
cvss3_cna_basescore			7.5

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!