Vulnerability in the Oracle Database - Enterprise Edition Sharding component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure privilege with network access via Oracle Net to compromise Oracle Database - Enterprise Edition Sharding. Successful attacks of this vulnerability can result in takeover of Oracle Database - Enterprise Edition Sharding. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).
References
Link | Resource |
---|---|
https://www.oracle.com/security-alerts/cpuapr2022.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: oracle
Published: 2022-04-19T20:36:45
Updated: 2022-04-19T20:36:45
Reserved: 2021-11-15T00:00:00
Link: CVE-2022-21410
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-19T21:15:14.317
Modified: 2022-04-27T17:45:20.033
Link: CVE-2022-21410
JSON object: View
Redhat Information
No data.
CWE