Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
database vault vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5512
Unspecified vulnerability in the Oracle Database Vault component in Oracle Database 9.2.0.8DV and 10.2.0.3 has unknown impact and remote attack vectors, aka DB21.
Oracle Database Server 10.2.0.3
Oracle Database Server 9.2.0.8dv
NA
CVE-2009-0997
Unspecified vulnerability in the Database Vault component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality, related to DBMS_SYS_SQL.
Oracle Database Server 11.1.0.6
NA
CVE-2011-2322
Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.1.0.7 allows remote authenticated users to affect integrity and availability, related to SYSDBA.
Oracle Database Server 11.1.0.7
NA
CVE-2007-5514
Multiple unspecified vulnerabilities in Oracle Database 10.2.0.3 have unknown impact and attack vectors related to (1) Database Vault component (DB24) and (2) SQL Execution component (DB26).
Oracle Database Server 10.2.0.3
7.5
CVSSv3
CVE-2021-27400
HashiCorp Vault and Vault Enterprise Cassandra integrations (storage backend and database secrets engine plugin) did not validate TLS certificates when connecting to Cassandra clusters. Fixed in 1.6.4 and 1.7.1
2.6
CVSSv3
CVE-2024-20911
Vulnerability in Oracle Audit Vault and Database Firewall (component: Firewall). Supported versions that are affected are 20.1-20.9. Difficult to exploit vulnerability allows high privileged attacker with network access via Oracle Net to compromise Oracle Audit Vault and Database...
7.5
CVSSv3
CVE-2024-20909
Vulnerability in Oracle Audit Vault and Database Firewall (component: Firewall). Supported versions that are affected are 20.1-20.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via Oracle Net to compromise Oracle Audit Vault and Database F...
9.1
CVSSv3
CVE-2020-16271
The SRP-6a implementation in Kee Vault KeePassRPC prior to 1.12.0 generates insufficiently random numbers, which allows remote malicious users to read and modify data in the KeePass database via a WebSocket connection.
Kee Keepassrpc
9.1
CVSSv3
CVE-2020-16272
The SRP-6a implementation in Kee Vault KeePassRPC prior to 1.12.0 is missing validation for a client-provided parameter, which allows remote malicious users to read and modify data in the KeePass database via an A=0 WebSocket connection.
Kee Keepassrpc
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3