Vulnerabilities > Oracle > Database

DATE CVE VULNERABILITY TITLE RISK
2016-04-21 CVE-2016-3454 Unspecified vulnerability in Oracle Database 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the Java VM component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
network
high complexity
oracle
critical
9.0
2016-04-21 CVE-2016-0691 Unspecified vulnerability in Oracle Database 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0690.
local
low complexity
oracle
3.3
2016-04-21 CVE-2016-0690 Unspecified vulnerability in Oracle Database 11.2.0.4/12.1.0.1/12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect integrity via unknown vectors, a different vulnerability than CVE-2016-0691.
local
low complexity
oracle
3.3
2016-04-21 CVE-2016-0677 Unspecified vulnerability in Oracle Database 12.1.0.1/12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote attackers to affect availability via unknown vectors.
network
high complexity
oracle
5.9
2014-10-15 CVE-2014-3566 Cryptographic Issues vulnerability in multiple products
The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.
3.4