CVE-2021-2054 – Vulnerability in the RDBMS Sharding component of Oracle Database Server. Supported version …

20 January 2021

Vuln ID: CVE-2021-2054

Published: 2021-01-20 15:15:48Z

Description: Vulnerability in the RDBMS Sharding component of Oracle Database Server. Supported versions that are affected are 12.2.0.1, 18c and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Create Any View, Create Any Trigger privilege with network access via Oracle Net to compromise RDBMS Sharding. Successful attacks of this vulnerability can result in takeover of RDBMS Sharding. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

Source: NVD.NIST.GOV

Date:

20 January 2021

Categorie(s):

NVD

Tag(s):

NVD

25 cybersecurity AI stats you should know25 April 2024
73% of SME security pros missed or ignored critical alerts25 April 2024
Battening down the hatches: Navigating third-party cyber threats 25 April 2024
Australia’s spies and cops want ‘accountable encryption’ – aka access to backdoors25 April 2024
Australia’s spies and cops want ‘accountable encryption’ – aka backdoors25 April 2024