CVE-2015-0373

Unspecified vulnerability in the OJVM component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

Published: Jan 21, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-0373
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / database_server	12.1.0.2	12.1.0.2.x
oracle / database_server	11.2.0.4	11.2.0.4.x
oracle / database_server	11.2.0.3	11.2.0.3.x
oracle / database_server	12.1.0.1	12.1.0.1.x
oracle / database_server	11.1.0.7	11.1.0.7.x

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.securityfocus.com/bid/72145
http://www.securitytracker.com/id/1031572
https://exchange.xforce.ibmcloud.com/vulnerabilities/100067

Vulnerability Database

290,020

CVE-2015-0373