Vulnerabilities > Oracle > Database Server > 11.2.0.4

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-5505 Information Exposure vulnerability in Oracle Database Server 11.2.0.4/12.1.0.2
Unspecified vulnerability in the RDBMS Programmable Interface component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors.
local
low complexity
oracle CWE-200
2.1
2.1
2016-10-25 CVE-2016-5499 Permissions, Privileges, and Access Controls vulnerability in Oracle Database Server 11.2.0.4/12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5498.
local
low complexity
oracle CWE-264
2.1
2.1
2016-10-25 CVE-2016-5498 Information Exposure vulnerability in Oracle Database Server 11.2.0.4/12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5499.
local
low complexity
oracle CWE-200
2.1
2.1
2016-10-25 CVE-2016-3562 Information Exposure vulnerability in Oracle Database Server 11.2.0.4/12.1.0.2
Unspecified vulnerability in the RDBMS Security and SQL*Plus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA.
network
oracle CWE-200
4.3
4.3
2016-04-08 CVE-2016-2381 Improper Input Validation vulnerability in multiple products
Perl might allow context-dependent attackers to bypass the taint protection mechanism in a child process via duplicate environment variables in envp.
network
low complexity
perl debian oracle opensuse canonical CWE-20
5.0
5.0
2016-01-21 CVE-2016-0499 Remote Security vulnerability in Oracle Database Server 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2015-4794.
network
low complexity
oracle
critical
 9.0
9.0
2016-01-21 CVE-2016-0472 Remote Security vulnerability in Oracle Database Server 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality and availability via unknown vectors.
network
low complexity
oracle
5.5
5.5
2016-01-21 CVE-2016-0467 Remote Security vulnerability in Oracle Database Server 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect integrity via unknown vectors.
network
low complexity
oracle
4.0
4.0
2016-01-21 CVE-2016-0461 Remote Security vulnerability in Oracle Database Server 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect availability via unknown vectors.
network
low complexity
oracle
4.0
4.0
2016-01-21 CVE-2015-4925 Remote Security vulnerability in Oracle Database Server 11.2.0.4
Unspecified vulnerability in the Workspace Manager component in Oracle Database Server 11.2.0.4 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
network
low complexity
oracle
6.5
6.5