Local Security Vulnerability in Oracle Berkeley DB from Oracle
CVE-2016-3418

7.8HIGH

Key Information:

Vendor: Oracle
Status: Berkeley Db
Vendor: CVE Published:; 21 April 2016

What is CVE-2016-3418?

The vulnerability in the DataStore component of Oracle Berkeley DB allows local users to potentially compromise the confidentiality, integrity, and availability of the database system. While specific vectors for exploitation remain unclear, it is crucial for organizations utilizing these versions of Oracle Berkeley DB to investigate their security posture and apply necessary updates or mitigations. This vulnerability is distinct from other related vulnerabilities identified in the same timeframe.

References

http://www.oracle.com/technetwork/security-advisory/cpuap...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 21, 2016
Vulnerability Reserved
Mar 17, 2016

JSON