Multiple Vulnerabilities in Oracle Database 9.x-10.x Affecting Advanced Queuing and Spatial Components
CVE-2007-3854

Currently unrated

Summary

Oracle Database, versions 9.0.1.5+, 9.2.0.7, and 10.1.0.5, are affected by multiple unspecified vulnerabilities that could allow remote authenticated users to exploit components such as SYS.DBMS_PRVTAQIS in Advanced Queuing and MDSYS.MD in the Spatial component. Notably, these vulnerabilities have been reported to relate to SQL injection and buffer overflow issues, which pose risks for data integrity and application availability.

References

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.