Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 18c. Easily exploitable vulnerability allows high privileged attacker having Create Session privilege with logon to the infrastructure where Core RDBMS executes to compromise Core RDBMS. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Core RDBMS accessible data. CVSS 3.0 Base Score 2.3 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2019-10-16T17:40:55
Updated: 2024-08-04T19:03:43.465Z
Reserved: 2018-12-14T00:00:00
Link: CVE-2019-2940
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-10-16T18:15:29.577
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-2940
Redhat
No data.