Oracle GoldenGate denial of service

A vulnerability classified as critical was found in Oracle GoldenGate (the affected version is unknown). This vulnerability affects an unknown code block of the component GoldenGate. Upgrading eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Field07/20/2022 08:15 AM08/06/2022 04:50 PM08/06/2022 04:57 PM
vendorOracleOracleOracle
nameGoldenGateGoldenGateGoldenGate
cveCVE-2021-3749CVE-2021-3749CVE-2021-3749
componentGoldenGateGoldenGateGoldenGate
risk222
cwe404 (denial of service)404 (denial of service)404 (denial of service)
cvss3_vuldb_avNNN
cvss3_vuldb_acLLL
cvss3_vuldb_prNNN
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cNNN
cvss3_vuldb_iNNN
cvss3_vuldb_aHHH
cvss3_vuldb_rcCCC
cvss3_vuldb_rlOOO
urlhttps://www.oracle.com/security-alerts/cpujul2022.htmlhttps://www.oracle.com/security-alerts/cpujul2022.htmlhttps://www.oracle.com/security-alerts/cpujul2022.html
date1658181600 (07/19/2022)1658181600 (07/19/2022)1658181600 (07/19/2022)
identifierOracle Critical Patch Update Advisory - July 2022Oracle Critical Patch Update Advisory - July 2022Oracle Critical Patch Update Advisory - July 2022
date1658181600 (07/19/2022)1658181600 (07/19/2022)1658181600 (07/19/2022)
nameUpgradeUpgradeUpgrade
cvss2_vuldb_avNNN
cvss2_vuldb_acLLL
cvss2_vuldb_auNNN
cvss2_vuldb_ciNNN
cvss2_vuldb_iiNNN
cvss2_vuldb_aiCCC
cvss2_vuldb_rcCCC
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_eNDNDND
cvss3_vuldb_eXXX
cvss2_vuldb_basescore7.87.87.8
cvss2_vuldb_tempscore6.86.86.8
cvss3_vuldb_basescore7.57.57.5
cvss3_vuldb_tempscore7.27.27.2
cvss3_meta_basescore7.57.57.5
cvss3_meta_tempscore7.27.27.4
price_0day$5k-$25k$5k-$25k$5k-$25k
patch_urlhttps://github.com/axios/axios/commit/5b457116e31db0e88fede6c428e969e87f290929https://github.com/axios/axios/commit/5b457116e31db0e88fede6c428e969e87f290929
cve_assigned1630274400 (08/30/2021)1630274400 (08/30/2021)
cve_nvd_summaryaxios is vulnerable to Inefficient Regular Expression Complexityaxios is vulnerable to Inefficient Regular Expression Complexity
cvss3_nvd_avN
cvss3_nvd_acL
cvss3_nvd_prN
cvss3_nvd_uiN
cvss3_nvd_sU
cvss3_nvd_cN
cvss3_nvd_iN
cvss3_nvd_aH
cvss2_nvd_avN
cvss2_nvd_acL
cvss2_nvd_auN
cvss2_nvd_ciN
cvss2_nvd_iiN
cvss2_nvd_aiC
cvss3_cna_avN
cvss3_cna_acL
cvss3_cna_prN
cvss3_cna_uiN
cvss3_cna_sU
cvss3_cna_cN
cvss3_cna_iN
cvss3_cna_aH
cve_cnahuntr.dev
cvss2_nvd_basescore7.8
cvss3_nvd_basescore7.5
cvss3_cna_basescore7.5

Might our Artificial Intelligence support you?

Check our Alexa App!