Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-99h2-3927-3h39

Опубликовано: 17 июл. 2024
Источник: github
Github: Не прошло ревью
CVSS3: 5.8

Описание

Vulnerability in the Oracle Database Portable Clusterware component of Oracle Database Server. Supported versions that are affected are 19.3-19.23 and 21.3-21.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via DNS to compromise Oracle Database Portable Clusterware. While the vulnerability is in Oracle Database Portable Clusterware, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Database Portable Clusterware. CVSS 3.1 Base Score 5.8 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L).

Vulnerability in the Oracle Database Portable Clusterware component of Oracle Database Server. Supported versions that are affected are 19.3-19.23 and 21.3-21.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via DNS to compromise Oracle Database Portable Clusterware. While the vulnerability is in Oracle Database Portable Clusterware, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Database Portable Clusterware. CVSS 3.1 Base Score 5.8 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L).

Ссылки

EPSS

Процентиль: 41%
0.00192
Низкий

5.8 Medium

CVSS3

CVE ID

CVE-2024-21126

Дефекты

CWE-400

Связанные уязвимости

nvd логотип

CVE-2024-21126

CVSS3: 5.8
nvd
больше 1 года назад

Vulnerability in the Oracle Database Portable Clusterware component of Oracle Database Server. Supported versions that are affected are 19.3-19.23 and 21.3-21.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via DNS to compromise Oracle Database Portable Clusterware. While the vulnerability is in Oracle Database Portable Clusterware, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Database Portable Clusterware. CVSS 3.1 Base Score 5.8 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L).

fstec логотип

BDU:2024-05516

CVSS3: 4.9
fstec
больше 1 года назад

Уязвимость компонента Oracle Database Portable Clusterware системы управления базами данных системы управления базами данных Oracle Database Server, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 41%
0.00192
Низкий

5.8 Medium

CVSS3

CVE ID

CVE-2024-21126

Дефекты

CWE-400