CVE-2022-21596

Vulnerability in the Oracle Database - Advanced Queuing component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having DBA user privilege with network access via Oracle Net to compromise Oracle Database - Advanced Queuing. Successful attacks of this vulnerability can result in takeover of Oracle Database - Advanced Queuing. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).
References
Link Resource
https://www.oracle.com/security-alerts/cpuoct2022.html Patch Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:database:19c:*:*:*:enterprise:*:*:*

History

20 Oct 2022, 04:28

Type Values Removed Values Added
References (MISC) https://www.oracle.com/security-alerts/cpuoct2022.html - (MISC) https://www.oracle.com/security-alerts/cpuoct2022.html - Patch, Vendor Advisory
CPE cpe:2.3:a:oracle:database:19c:*:*:*:enterprise:*:*:*
CWE NVD-CWE-noinfo

18 Oct 2022, 21:18

Type Values Removed Values Added
New CVE

Information

Published : 2022-10-18 21:15

Updated : 2024-02-04 22:51


NVD link : CVE-2022-21596

Mitre link : CVE-2022-21596

CVE.ORG link : CVE-2022-21596


JSON object : View

Products Affected

oracle

  • database