VDB

CVE-2022-21596

CVE-2022-21596 PUBLISHED CVSS 7.199999809265137 HIGH

Vulnerability in the Oracle Database - Advanced Queuing component of Oracle Database Server. The supported version that is affected is 19c. Easily exploitable vulnerability allows high privileged attacker having DBA user privilege with network access via Oracle Net to compromise Oracle Database - Advanced Queuing. Successful attacks of this vulnerability can result in takeover of Oracle Database - Advanced Queuing. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

EPSS 1.33% · 80.2th percentile

Risk Scores

CVSS v3.1
7.199999809265137
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
1.33%
80.2th percentile

Affected Products

VendorProductVersions
oracledatabase*
Oracle CorporationDatabase - Enterprise Edition19c

Timeline

  • Oct 18, 2022 CVE Published
  • Oct 19, 2022 EPSS Score
  • Dec 2, 2022 EPSS Score
  • Jan 14, 2023 EPSS Score
  • Feb 27, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 12, 2023 EPSS Score
  • May 25, 2023 EPSS Score
  • Jul 8, 2023 EPSS Score
  • Oct 4, 2023 EPSS Score
  • Nov 16, 2023 EPSS Score
  • Dec 30, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›