Описание
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to "Advisor" and "Select Any Dictionary" privileges.
Комментарий
Per: http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
"The CVSS Base Score is 8.5 only for Windows. For Linux, Unix and other platforms, the CVSS Base Score is 6.0, and the impacts for Confidentiality, Integrity and Availability are Partial+."
Уязвимые конфигурации
Одно из
EPSS
8.5 High
CVSS2
Дефекты
Связанные уязвимости
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to "Advisor" and "Select Any Dictionary" privileges.
Уязвимость системы управления базами данных Oracle Database Server, позволяющая удаленному злоумышленнику повлиять на конфиденциальность, целостность и доступность информации
EPSS
8.5 High
CVSS2