First published: Tue Oct 18 2022(Updated: )
Vulnerability in the Oracle Database - Advanced Queuing component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having DBA user privilege with network access via Oracle Net to compromise Oracle Database - Advanced Queuing. Successful attacks of this vulnerability can result in takeover of Oracle Database - Advanced Queuing. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).
Credit: secalert_us@oracle.com
Affected Software | Affected Version | How to fix |
---|---|---|
Oracle Database | =19c |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this Oracle Database vulnerability is CVE-2022-21596.
The Advanced Queuing component of Oracle Database Server is affected by this vulnerability.
The severity of CVE-2022-21596 is high.
The 19c version of Oracle Database Server is affected by this vulnerability.
An attacker with DBA user privilege and network access via Oracle Net can exploit this vulnerability.
Yes, a fix is available for this vulnerability. Please refer to Oracle's security advisory for more information: [Link](https://www.oracle.com/security-alerts/cpuoct2022.html)