Oracle have released a patch to fix a vulnerability (CVE-2018-3110) in their Oracle Database product. The vulnerability is in the Java VM component of Oracle Database Server, a remote authenticated attacker can exploit it take complete control of the product and establish a shell access to the underlying server.
Affected versions:
Oracle Database Server versions 11.2.0.4, 12.1.0.2, 12.2.0.1, 18
More information (including instructions for patching) in Oracle's security advisory.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment