Vulnerability in Data Store Component of Oracle Berkeley DB
CVE-2019-2708

3.3LOW

Key Information:

Vendor: Oracle
Status: Oracle Berkeley Db
Vendor: CVE Published:; 23 April 2019

Summary

The vulnerability affects the Data Store component of Oracle Berkeley DB, allowing a low privileged attacker with local logon access to compromise the data store. This can lead to unauthorized actions that may cause a partial denial of service, affecting the availability of the Data Store operation. It's crucial for users of affected versions to apply the necessary updates to mitigate this security issue.

Affected Version(s)

Oracle Berkeley DB < 6.138

Oracle Berkeley DB < 6.2.38

Oracle Berkeley DB < 18.1.32

References

http://www.oracle.com/technetwork/security-advisory/cpuap...

x_refsource_MISC

https://lists.fedoraproject.org/archives/list/package-ann...

vendor-advisoryx_refsource_FEDORA

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 23, 2019
Vulnerability Reserved
Dec 14, 2018