Lucene search
PRIOn knowledge basePRION:CVE-2023-22034HistoryJul 18, 2023 - 9:15 p.m.
Design/Logic Flaw
2023-07-1821:15:00
PRIOn knowledge base
www.prio-n.com
3
oracle database
unified audit
vulnerability
network access
sysdba
exploitable
critical data
integrity impact
Vulnerability in the Unified Audit component of Oracle Database Server. Supported versions that are affected are 19.3-19.19 and 21.3-21.10. Easily exploitable vulnerability allows high privileged attacker having SYSDBA privilege with network access via Oracle Net to compromise Unified Audit. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Unified Audit accessible data. CVSS 3.1 Base Score 4.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N).
| CPE | Name | Operator | Version |
|---|---|---|---|
| database_server | ge | 21.3 | |
| database_server | le | 21.10 | |
| database_server | ge | 19.3 | |
| database_server | le | 19.19 |
Related
cve
cve
CVE-2023-22034
2023-07-18 21:15:13
cnvd
cnvd
Unspecified Vulnerability in Oracle Database Server (CNVD-2023-71319)
2023-07-20 00:00:00
nvd
nvd
CVE-2023-22034
2023-07-18 21:15:13
cvelist
cvelist
CVE-2023-22034
2023-07-18 20:18:19
nessus
nessus
Oracle Database Server (Jul 2023 CPU)
2023-07-19 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2023
2023-07-18 00:00:00