Vulnerability in Oracle GoldenGate (component: OGG Core Library). The supported version that is affected is Prior to 23.1. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle GoldenGate executes to compromise Oracle GoldenGate. While the vulnerability is in Oracle GoldenGate, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle GoldenGate. CVSS 3.1 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H).
References
Link | Resource |
---|---|
https://www.oracle.com/security-alerts/cpuapr2022.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: oracle
Published: 2022-04-19T20:37:29
Updated: 2022-04-19T20:37:28
Reserved: 2021-11-15T00:00:00
Link: CVE-2022-21442
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-19T21:15:15.750
Modified: 2022-04-28T13:28:05.600
Link: CVE-2022-21442
JSON object: View
Redhat Information
No data.
CWE