CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-14743

Vulnerability in the Java VM component of Oracle Database Server. Supported versions that are affected are 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19c. Difficult to exploit vulnerability allows low privileged attacker having Create Procedure privilege with network access via multiple protocols to compromise Java VM. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java VM accessible data. CVSS 3.1 Base Score 3.1 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.4%

CVSS Severity

CVSS v3 Score 3.1

CVSS v2 Score 4.9

References

Products affected by CVE-2020-14743

Oracle » Java Virtual Machine » Version: 11.2.0.4

cpe:2.3:a:oracle:java_virtual_machine:11.2.0.4
Oracle » Java Virtual Machine » Version: 12.1.0.2

cpe:2.3:a:oracle:java_virtual_machine:12.1.0.2
Oracle » Java Virtual Machine » Version: 12.2.0.1

cpe:2.3:a:oracle:java_virtual_machine:12.2.0.1
Oracle » Java Virtual Machine » Version: 18c

cpe:2.3:a:oracle:java_virtual_machine:18c
Oracle » Java Virtual Machine » Version: 19c

cpe:2.3:a:oracle:java_virtual_machine:19c

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-14743

Products

Pricing

Contact Us