Java VM Vulnerability in Oracle Database Server Affecting Multiple Versions
CVE-2022-39419
4.3MEDIUM
What is CVE-2022-39419?
This vulnerability impacts the Java VM component of Oracle Database Server, specifically affecting the 19c and 21c versions. It enables a low privileged attacker with 'Create Procedure' privileges, who has network access via Oracle Net, to compromise Java VM. Exploiting this vulnerability could allow unauthorized read access to certain data accessible through Java VM, posing a risk to data confidentiality.
Affected Version(s)
Database - Enterprise Edition 19c
Database - Enterprise Edition 21c