Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xml database vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv3
CVE-2021-2333
Vulnerability in the Oracle XML DB component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Alter User privilege with network access via Oracle Net to compromi...
Oracle Xml Database 12.1.0.2
Oracle Xml Database 12.2.0.1
Oracle Xml Database 19c
7.2
CVSSv3
CVE-2021-2329
Vulnerability in the Oracle XML DB component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Create Public Synonym privilege with network ...
Oracle Xml Database 12.1.0.2
Oracle Xml Database 12.2.0.1
Oracle Xml Database 19c
NA
CVE-2008-0339
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 has unknown impact and remote attack vectors, aka DB01.
Oracle Database Server 10.2.0.3
Oracle Database Server 9.2.0.8dv
Oracle Database Server 10.1.0.5
1 EDB exploit
7.2
CVSSv3
CVE-2021-2337
Vulnerability in the Oracle XML DB component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 19c. Easily exploitable vulnerability allows high privileged attacker having Create Any Procedure, Create Public Synonym privilege with network ...
Oracle Database 12.1.0.2
Oracle Database 12.2.0.1
Oracle Database 19c
NA
CVE-2014-6577
Unspecified vulnerability in the XML Developer's Kit for C component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors. NOTE: the previous information is from the January 2015 ...
Oracle Database Server 12.1.0.1
Oracle Database Server 12.1.0.2
Oracle Database Server 11.2.0.3
Oracle Database Server 11.2.0.4
1 Github repository
NA
CVE-2015-0455
Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors.
Oracle Database Server 11.1.0.7
Oracle Database Server 12.1.0.1
Oracle Database Server 12.1.0.2
Oracle Database Server 11.2.0.3
Oracle Database Server 11.2.0.4
NA
CVE-2010-0851
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality via unknown vectors.
Oracle Database Server 10.1.0.5
Oracle Database Server 10.2.0.3
Oracle Database Server 9.2.0.8
Oracle Database Server 9.2.0.8dv
NA
CVE-2013-5771
Unspecified vulnerability in the XML Parser component in Oracle Database Server 11.1.0.7, 11.2.0.2, 11.2.0.3, and 12.1.0.1 allows remote malicious users to affect confidentiality and availability via unknown vectors.
Oracle Database Server 11.2.0.3
Oracle Database Server 11.2.0.2
Oracle Database Server 12.1.0.1
Oracle Database Server 11.1.0.7
NA
CVE-2010-0852
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Oracle Database Server 9.2.0.8
Oracle Database Server 9.2.0.8dv
Oracle Database Server 10.1.0.5
Oracle Database Server 10.2.0.3
NA
CVE-2011-2231
Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1, Oracle Fusion Middleware 10.1.3.5, allows remote malicious users to affect availability via unknown vectors.
Oracle Database Server 11.2.0.1
Oracle Fusion Middleware 10.1.3.5
Oracle Database Server 10.1.0.5
Oracle Database Server 10.2.0.5
Oracle Database Server 11.1.0.7
Oracle Database Server 10.2.0.3
Oracle Database Server 10.2.0.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2108
CVE-2024-31061
CVE-2024-25959
CVE-2023-45866
injection
IDOR
memory leak
CVE-2024-1086
CVE-2023-42931
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »