CNNVD-202507-3067 Information

CNNVD ID

CNNVD-202507-3067

Related CVE

CVE-2025-8107

• CNNVD Published: 2025-07-24

Description (Chinese)

Oracle GoldenGate是美国甲骨文（Oracle）公司的一个用于在IT环境中进行实时数据集成和复制的综合软件包。该产品支持实时数据集成、事务型变更数据捕获、数据服务、转换和验证功能。 Oracle GoldenGate存在安全漏洞，该漏洞源于特制命令可能导致权限提升至SYS级别。

Description (English)

Oracle GoldenGate is a comprehensive software package for real-time data integration and replication in the IT environment of Oracle. The product supports real-time data integration, service-type data capture, data services, conversion and validation functions. There is a security loophole in Oracle GoldenGate, which stems from the fact that a special order may result in a power upgrade to the SYS level.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

甲骨文

Published

2025-07-24

Last Modified

2026-02-24

References

https://github.com/oceanbase/oceanbase/security

Patch

https://github.com/oceanbase/oceanbase/releases