VDB

CVE-2022-21603

CVE-2022-21603 PUBLISHED CVSS 7.199999809265137 HIGH

Vulnerability in the Oracle Database - Sharding component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows high privileged attacker having Local Logon privilege with network access via Local Logon to compromise Oracle Database - Sharding. Successful attacks of this vulnerability can result in takeover of Oracle Database - Sharding. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).

EPSS 1.13% · 78.7th percentile

Risk Scores

CVSS 3.1
7.199999809265137
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
1.13%
78.7th percentile

Affected Products

VendorProductVersions
Oracle CorporationDatabase - Enterprise Edition*, *
oracledatabase_-_sharding19c, 21c

Exploit Intelligence

Timeline

  • Oct 18, 2022 CVE Published
  • Oct 19, 2022 EPSS Score
  • Dec 2, 2022 EPSS Score
  • Jan 15, 2023 EPSS Score
  • Feb 27, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 12, 2023 EPSS Score
  • May 26, 2023 EPSS Score
  • Jul 9, 2023 EPSS Score
  • Aug 21, 2023 EPSS Score
  • Oct 4, 2023 EPSS Score
  • Nov 17, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›