CVE-2023-21827 in Database Serverinformazioni

Riassunto

di MITRE • 18/01/2023

Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle Database Data Redaction. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Database Data Redaction accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsabile

Oracle

Prenotare

17/12/2022

Divulgazione

18/01/2023

Moderazione

accettato

CPE

pronto

EPSS

0.00453

KEV

no

Attività

molto basso

Fonti

Want to know what is going to be exploited?

We predict KEV entries!