First published: Tue Jul 18 2023(Updated: )
Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are 19.3-19.19 and 21.3-21.10. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Advanced Networking Option. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Advanced Networking Option accessible data. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).
Credit: secalert_us@oracle.com secalert_us@oracle.com
Affected Software | Affected Version | How to fix |
---|---|---|
Oracle Database Server | >=19.3<=19.19 | |
Oracle Database Server | >=21.3<=21.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Oracle Database Server vulnerability is CVE-2023-21949.
This vulnerability affects the Advanced Networking Option component of Oracle Database Server.
The affected versions of Oracle Database Server are 19.3-19.19 and 21.3-21.10.
The severity of this vulnerability is low with a CVSS score of 3.7.
An unauthenticated attacker with network access via Oracle Net can exploit this vulnerability to compromise the Advanced Networking Option.