VDB
WID-SEC-W-2023-2673
WID-SEC-W-2023-2673
PUBLISHED
Die Oracle Datenbank ist ein weit verbreitetes relationales Datenbanksystem.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle Database Server <= 21.11 | ||
| IBM QRadar SIEM < 7.5.0 UP7 IF02 | ||
| Oracle Database Server <= 19.20 |
Exploit Intelligence
- CVE-2024-23222 WebKit type confusion → iOS 16.4.1 sandbox escape. Full chain: JSC JIT confusion → addrof/read64/write64 → WASM indirect call → arbitrary C functions → file write outside sandbox. (github-poc-repo)
- CVE-2024-23222 WebKit type confusion → iOS 16.4.1 sandbox escape. Full chain: JSC JIT confusion → addrof/read64/write64 → WASM indirect call → arbitrary C functions → file write outside sandbox. (github-poc)
- Comprehensive deobfuscated research of the Coruna iOS exploit kit targeting CVE-2024-23222. Analysis of WebKit Type Confusion, PAC Bypass, and Sandbox Escape (github-poc-repo)
- Adaptation of Cassowary CVE-2024-23222 for Linux x86_64 (github-poc-repo)
- Analyze and deobfuscate the Coruna Exploit Kit (CVE-2024-23222) to enhance understanding and detection of related threats. (github-poc-repo)
- Analyze and deobfuscate the Coruna Exploit Kit (CVE-2024-23222) to enhance understanding and detection of related threats. (github-poc)
- Adaptation of Cassowary CVE-2024-23222 for Linux x86_64 (github-poc)
- Comprehensive deobfuscated research of the Coruna iOS exploit kit targeting CVE-2024-23222. Analysis of WebKit Type Confusion, PAC Bypass, and Sandbox Escape (github-poc)
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2673.json (circl)
- https://www.oracle.com/security-alerts/cpuoct2023.html#AppendixDB (circl)
…and 12 more exploits
Timeline
- Oct 17, 2023 CVE Published
- Nov 12, 2023 CVE Updated