Java VM Vulnerability in Oracle Database Server on Windows
CVE-2015-4796

Currently unrated

Key Information:

Vendor: Oracle
Status: Database Server; Windows
Vendor: CVE Published:; 21 October 2015

Summary

An unspecified vulnerability exists within the Java VM component of Oracle Database Server, specifically affecting versions 11.2.0.4, 12.1.0.1, and 12.1.0.2 when deployed on Windows platforms. This vulnerability enables remote authenticated users to compromise the confidentiality, integrity, and availability of the database system through unknown vectors. The flaw necessitates immediate attention to safeguard against potential security breaches.

References

http://www.securitytracker.com/id/1033883

vdb-entryx_refsource_SECTRACK

http://www.oracle.com/technetwork/topics/security/cpuoct2...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/77193

vdb-entryx_refsource_BID

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 21, 2015
Vulnerability Reserved
Jun 24, 2015