Total
489 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-1767 | 1 Oracle | 1 Database Server | 2017-07-10 | 7.2 HIGH | N/A |
Buffer overflow in tnslsnr of Oracle 8i Database Server 8.1.5 for Linux allows local users to execute arbitrary code as the oracle user via a long command line argument. | |||||
CVE-2003-0222 | 1 Oracle | 3 Database Server, Oracle8i, Oracle9i | 2017-07-10 | 9.0 HIGH | N/A |
Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter. | |||||
CVE-2001-0941 | 1 Oracle | 1 Database Server | 2017-07-10 | 4.6 MEDIUM | N/A |
Buffer overflow in dbsnmp in Oracle 8.0.6 through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable. | |||||
CVE-2015-0483 | 1 Oracle | 1 Database Server | 2017-01-02 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors. | |||||
CVE-2015-0455 | 1 Oracle | 1 Database Server | 2017-01-02 | 6.8 MEDIUM | N/A |
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||
CVE-2015-0479 | 1 Oracle | 1 Database Server | 2017-01-02 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the XDK and XDB - XML Database component in Oracle Database Server 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect availability via unknown vectors. | |||||
CVE-2015-0457 | 1 Oracle | 1 Database Server | 2017-01-02 | 9.0 HIGH | N/A |
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-2629. | |||||
CVE-2015-4857 | 1 Oracle | 1 Database Server | 2016-12-23 | 5.5 MEDIUM | N/A |
Unspecified vulnerability in the RDBMS component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
CVE-2015-4794 | 1 Oracle | 1 Database Server | 2016-12-23 | 9.0 HIGH | N/A |
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
CVE-2015-4873 | 1 Oracle | 1 Database Server | 2016-12-23 | 7.2 HIGH | N/A |
Unspecified vulnerability in the Database Scheduler component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
CVE-2015-4863 | 1 Oracle | 1 Database Server | 2016-12-23 | 10.0 HIGH | N/A |
Unspecified vulnerability in the Portable Clusterware component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | |||||
CVE-2015-4888 | 1 Oracle | 1 Database Server | 2016-12-23 | 6.5 MEDIUM | N/A |
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4796. | |||||
CVE-2015-4796 | 2 Microsoft, Oracle | 2 Windows, Database Server | 2016-12-23 | 9.0 HIGH | N/A |
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2, when running on Windows, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4888. | |||||
CVE-2015-4900 | 1 Oracle | 1 Database Server | 2016-12-23 | 6.5 MEDIUM | N/A |
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
CVE-2016-0461 | 1 Oracle | 1 Database Server | 2016-12-07 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors. | |||||
CVE-2016-0499 | 1 Oracle | 1 Database Server | 2016-12-07 | 9.0 HIGH | N/A |
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4794. | |||||
CVE-2016-0472 | 1 Oracle | 1 Database Server | 2016-12-07 | 5.5 MEDIUM | N/A |
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality and availability via unknown vectors. | |||||
CVE-2016-0467 | 1 Oracle | 1 Database Server | 2016-12-07 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors. | |||||
CVE-2015-4925 | 1 Oracle | 1 Database Server | 2016-12-07 | 6.5 MEDIUM | N/A |
Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.2.0.4 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
CVE-2015-4923 | 1 Oracle | 1 Database Server | 2016-12-07 | 4.0 MEDIUM | N/A |
Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors. |