VDB

GCVE-110-NCSC-2025-127

GCVE-110-NCSC-2025-127
Advisory PublishedCVSS 7.5/10
Vulnetix · Advisory published April 16, 2025
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Weaknesses (CWE)

CWE-20Improper Input ValidationCWE-502Deserialization of Untrusted DataCWE-732Incorrect Permission Assignment for Critical ResourceCWE-921Storage of Sensitive Data in a Mechanism without Access ControlCWE-611Improper Restriction of XML External Entity ReferenceCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')CWE-670Always-Incorrect Control Flow ImplementationCWE-669Incorrect Resource Transfer Between SpheresCWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-284Improper Access ControlCWE-639Authorization Bypass Through User-Controlled KeyCWE-121Stack-based Buffer OverflowCWE-400Uncontrolled Resource ConsumptionCWE-303Incorrect Implementation of Authentication AlgorithmCWE-367Time-of-check Time-of-use (TOCTOU) Race ConditionCWE-404Improper Resource Shutdown or Release

Risk Scores

CVSS 3.1
7.5/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected Products

VendorProductVersionsPlatforms
Oraclevers:oracle/8.1.3.0
Oraclevers:oracle/8.0.8.1
Oraclevers:unknown/8.1.2.7.0
Oraclevers:unknown/8.1.3.0
Oraclevers:oracle/8.0.7.8
Oraclevers:unknown/8.0.8.1
Oraclevers:oracle/8.1.2.5
Oraclevers:unknown/8.1.2.5
Oraclevers:oracle/8.1.2.7.0
Oraclevers:oracle/8.1.2.9
Oraclevers:oracle/8.1.2.8
Oraclevers:oracle/8.1.1.4
Oraclevers:unknown/8.0.7.8
Oraclevers:oracle/8.1.2.6
Oraclevers:oracle/5.1.0.0.0
Oraclevers:unknown/8.1.2.6
Oraclevers:oracle/14.7.5.0.0
Oraclevers:oracle/22.1.0.0.0
Oraclevers:oracle/22.2.0.0.0
Oraclevers:unknown/8.0.8.6
Oraclevers:oracle/8.1.2.7
Oraclevers:oracle/8.0.8
Oracle Corporationvers:semver/6.1.0.0.0
Oraclevers:unknown/8.1.2.8
Oraclevers:oracle/21.1.0.0.0
Oraclevers:oracle/8.0.8.6
Oracle Corporationvers:semver/5.1.0.0.0
Oraclevers:unknown/8.1.1.4
Oraclevers:oracle/7.0.0.0.0
Oraclevers:unknown/8.1.2.7
Oraclevers:oracle/14.7.0.7.0
Oraclevers:oracle/>=14.4.0.0.0|<=14.7.0.0.0
Oraclevers:unknown/14.7.0.7.0
Oraclevers:oracle/>=2.9.0.0.0|<=7.0.0.0.0
Oraclevers:oracle/>=14.5.0.0.0|<=14.7.0.0.0
Oracle Corporationvers:semver/7.0.0.0.0
Oraclevers:oracle/6.1.0.0.0

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›