Insufficient information vulnerability in the Oracle Database - Enterprise Edition of Oracle Database Server - CVE-2020-2978ID: oval:org.secpod.oval:def:64763 | Date: (C)2020-08-04 (M)2024-05-06 |
Class: VULNERABILITY | Family: unix |
The host is installed with Oracle Database Server 12.1.0.2, 12.2.0.1, 18c or 19c and is prone to an insufficient information vulnerability. A flaw is present in the application, which fails to handle the GeoRaster (OpenJPG). Successful exploitation allows an attacker to takeover the Oracle database - enterprise edition.
Product: |
Oracle Database Server |