CVE-2021-2330
First published: Wed Jul 21 2021(Updated: )
Vulnerability in the Core RDBMS component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows low privileged attacker having Create Table privilege with network access via Oracle Net to compromise Core RDBMS. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Core RDBMS. CVSS 3.1 Base Score 4.3 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Core Rdbms | =19c |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-2330?
The severity of CVE-2021-2330 is medium with a severity value of 4.3.
Which version of Oracle Database Server is affected by CVE-2021-2330?
The 19c version of Oracle Database Server is affected by CVE-2021-2330.
How can a low privileged attacker exploit CVE-2021-2330?
A low privileged attacker with Create Table privilege and network access via Oracle Net can exploit CVE-2021-2330.
What can be compromised if CVE-2021-2330 is successfully exploited?
If CVE-2021-2330 is successfully exploited, the Core RDBMS component of Oracle Database Server can be compromised.
Where can I find more information about CVE-2021-2330?
More information about CVE-2021-2330 can be found at the following link: [Oracle Security Alerts - July 2021](https://www.oracle.com/security-alerts/cpujul2021.html)
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/type
- vendor/oracle
- canonical/oracle core rdbms
- version/oracle core rdbms/19c