Oracle Database Materialized View Component Vulnerability Allowing Unauthorized Data Modification

Vulnerability

A vulnerability exists in the Oracle Database Materialized View component of Oracle Database Server, affecting versions 19.3-19.27, 21.3-21.18, and 23.4-23.8. This vulnerability allows a high-privileged attacker with network access via Oracle Net and the Execute on DBMS_REDEFINITION privilege to compromise the Oracle Database Materialized View. Exploitation of this vulnerability could lead to unauthorized updates, inserts, or deletions of accessible data within the Oracle Database Materialized View.

Impact

Successful exploitation allows for unauthorized modification of data, including updates, inserts, or deletions, within the affected Oracle Database Materialized Views.

Added: Jul 15, 2025, 10:34 PM

Updated: Jul 15, 2025, 10:34 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

0.6

exploitability

4.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

0.6

exploitability

4.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle Database Materialized View Component Vulnerability Allowing Unauthorized Data Modification

Vulnerability

Impact

Affected Products

Oracle Database Materialized View

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating