CVE-2009-0997 : Unspecified vulnerability in the Database Vault component in Oracle Database 11.1.0.6 allows remote authenticated users

Unspecified vulnerability in the Database Vault component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality, related to DBMS_SYS_SQL.

Published 2009-04-15 10:30:01

Updated 2012-10-23 03:04:29

Source Oracle

View at NVD, CVE.org

Threat overview for CVE-2009-0997

Top countries where our scanners detected CVE-2009-0997

Top open port discovered on systems with this issue 1521

IPs affected by CVE-2009-0997 48

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2009-0997!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2009-0997

Probability of exploitation activity in the next 30 days: 0.73%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 78 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2009-0997

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.0	MEDIUM	AV:N/AC:L/Au:S/C:P/I:N/A:N	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

References for CVE-2009-0997

Products affected by CVE-2009-0997

Oracle » Database Server » Version: 11.1.0.6
cpe:2.3:a:oracle:database_server:11.1.0.6:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2009-0997

Threat overview for CVE-2009-0997

Exploit prediction scoring system (EPSS) score for CVE-2009-0997

CVSS scores for CVE-2009-0997

References for CVE-2009-0997

Products affected by CVE-2009-0997