Vulnerability in the Oracle Database - Enterprise Edition Sharding component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure privilege with network access via Oracle Net to compromise Oracle Database - Enterprise Edition Sharding. Successful attacks of this vulnerability can result in takeover of Oracle Database - Enterprise Edition Sharding. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.oracle.com/security-alerts/cpuapr2022.html |
History
Tue, 24 Sep 2024 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2022-04-19T20:36:45
Updated: 2024-09-24T20:14:05.503Z
Reserved: 2021-11-15T00:00:00
Link: CVE-2022-21410
Vulnrichment
Updated: 2024-08-03T02:38:56.147Z
NVD
Status : Modified
Published: 2022-04-19T21:15:14.317
Modified: 2024-11-21T06:44:38.180
Link: CVE-2022-21410
Redhat
No data.