Oracle Database Server Java VM Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the Java VM component of Oracle Database Server. This issue affects versions 19.3 through 19.29 and 21.3 through 21.20. The vulnerability is easily exploitable by a high-privileged attacker with Authenticated User rights and network access via Oracle Net. Exploitation requires human interaction from a third party. Successful attacks can lead to a complete hang or a frequently repeatable crash of the Java VM.

Impact

Exploitation of this vulnerability can cause a complete hang or a frequently repeatable crash of the Java VM, leading to a denial-of-service condition.

Added: Jan 20, 2026, 10:40 PM

Updated: Jan 20, 2026, 10:40 PM

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

4.1

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.3

impact

2.5

exploitability

4.1

remediation

0.0

relevance

2.2

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Oracle Database Server Java VM Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

Oracle Database Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating