Total
489 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2001-0833 | 1 Oracle | 1 Database Server | 2018-05-02 | 7.2 HIGH | N/A |
| Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability." | |||||
| CVE-2002-0567 | 1 Oracle | 3 Database Server, Oracle8i, Oracle9i | 2017-10-09 | 7.5 HIGH | N/A |
| Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process. | |||||
| CVE-2003-0727 | 1 Oracle | 1 Database Server | 2017-09-27 | 2.1 LOW | N/A |
| Multiple buffer overflows in the XML Database (XDB) functionality for Oracle 9i Database Release 2 allow local users to cause a denial of service or hijack user sessions. | |||||
| CVE-2015-4753 | 1 Oracle | 1 Database Server | 2017-09-21 | 2.1 LOW | N/A |
| Unspecified vulnerability in the RDBMS Support Tools component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality via unknown vectors. | |||||
| CVE-2015-4755 | 1 Oracle | 1 Database Server | 2017-09-21 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.2 allows remote attackers to affect confidentiality via unknown vectors. | |||||
| CVE-2015-2655 | 1 Oracle | 1 Database Server | 2017-09-21 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the Application Express component in Oracle Database Server before 4.2.3.00.08 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2015-0468 | 1 Oracle | 1 Database Server | 2017-09-21 | 6.0 MEDIUM | N/A |
| Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2015-2599 | 1 Oracle | 1 Database Server | 2017-09-21 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the RDBMS Scheduler component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors. | |||||
| CVE-2015-4740 | 1 Oracle | 1 Database Server | 2017-09-21 | 6.0 MEDIUM | N/A |
| Unspecified vulnerability in the RDBMS Partitioning component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2015-2585 | 1 Oracle | 1 Database Server | 2017-09-21 | 2.1 LOW | N/A |
| Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0 allows remote authenticated users to affect availability via unknown vectors. | |||||
| CVE-2015-2586 | 1 Oracle | 1 Database Server | 2017-09-21 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Application Express component in Oracle Database Server before 4.2.1 allows remote attackers to affect availability via unknown vectors. | |||||
| CVE-2015-2595 | 1 Oracle | 1 Database Server | 2017-09-21 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle OLAP component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2015-2629 | 1 Oracle | 1 Database Server | 2017-09-21 | 9.0 HIGH | N/A |
| Unspecified vulnerability in the Java VM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-0457. | |||||
| CVE-2013-3826 | 1 Oracle | 1 Database Server | 2017-09-18 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect confidentiality via unknown vectors. | |||||
| CVE-2013-5771 | 1 Oracle | 1 Database Server | 2017-09-18 | 6.4 MEDIUM | N/A |
| Unspecified vulnerability in the XML Parser component in Oracle Database Server 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect confidentiality and availability via unknown vectors. | |||||
| CVE-2012-3220 | 1 Oracle | 1 Database Server | 2017-09-18 | 9.0 HIGH | N/A |
| Unspecified vulnerability in the Spatial component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote authenticated users with Create Session privileges to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2011-0875 | 1 Oracle | 2 Database Server, Enterprise Manager Grid Control | 2017-09-08 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the EMCTL component in Oracle Database Server 11.1.0.7 and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2012-0519 | 2 Microsoft, Oracle | 2 Windows, Database Server | 2017-09-08 | 7.1 HIGH | N/A |
| Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.2.0.2, when running on Windows, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2012-1708 | 1 Oracle | 1 Database Server | 2017-09-08 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Application Express component in Oracle Database Server 4.0 and 4.1 allows remote attackers to affect integrity via unknown vectors. | |||||
| CVE-2015-0373 | 1 Oracle | 1 Database Server | 2017-09-07 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in the OJVM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||