CVE-2009-1995

2009-10-2218:30:00

oracle

web.nvd.nist.gov

oracle

database

vulnerability

advanced queuing

nvd

cve-2009-1995

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:P/A:N

AI Score

5.4

Confidence

Low

EPSS

0.002

Percentile

54.3%

JSON

Unspecified vulnerability in the Advanced Queuing component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_AQ_INV.

Affected configurations

Nvd

Node

oracledatabase_serverMatch10.2.0.4

oracledatabase_serverMatch11.1.0.7

VendorProductVersionCPE
oracledatabase_server10.2.0.4cpe:2.3:a:oracle:database_server:10.2.0.4:*:*:*:*:*:*:*
oracledatabase_server11.1.0.7cpe:2.3:a:oracle:database_server:11.1.0.7:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	database_server	10.2.0.4	cpe:2.3:a:oracle:database_server:10.2.0.4:::::::*
oracle	database_server	11.1.0.7	cpe:2.3:a:oracle:database_server:11.1.0.7:::::::*