Oracle Database Server
Moderate fix1 remedy
cpe:2.3:a:oracle:database_server:*:*:*:*:*:*:*
Moderate fix1 remedy
- >= 19.3, <= 19.26
- >= 21.3, <= 21.17
- >= 23.4, <= 23.7
Oracle Database Server Java VM Vulnerability Allows Unauthenticated Data Access and Modification
Vulnerability
A vulnerability has been identified in the Java VM component of Oracle Database Server. This issue affects versions 19.3-19.26, 21.3-21.17, and 23.4-23.7. The vulnerability, which is difficult to exploit, allows an unauthenticated attacker with network access to compromise the Java VM. Successful exploitation could lead to unauthorized creation, deletion, or modification of critical data, or any data accessible to the Java VM.
Impact
Exploitation of this vulnerability could result in unauthorized access to, and modification of, critical data or any data accessible to the Java VM.
Remediation
Users can apply the latest security patches available through the Oracle Critical Patch Update program. Instructions for applying these patches can be found in the Oracle Database April 2025 Critical Patch Update Patch Availability Document.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
7.3impact
5.0exploitability
7.4remediation
7.7relevance
0.0threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.