CNNVD-202510-2709 Information
CNNVD ID
CNNVD-202510-2709
Related CVE
- CNNVD Published: 2025-10-21
Description (Chinese)
Oracle Database Server是美国甲骨文(Oracle)公司的一套关系数据库管理系统。该数据库管理系统提供数据管理、分布式处理等功能。 Oracle Database Server的Java VM 19.3版本至19.28版本、21.3版本至21.19版本和23.4版本至23.9版本存在安全漏洞,该漏洞源于未经验证的攻击者可通过Oracle Net网络访问进行攻击,可能导致关键数据或所有Java VM可访问数据的未授权创建、删除或修改。
Description (English)
Oracle Database Server is a relationship database management system for Oracle. The database management system provides data management, distributed processing and so on. There is a security loophole in the Java VM 19.3 to 19.28, 21.3 to 21.19 and 23.4 to 23.9 of Oracle Data Server ’ s versions of Java VM, which stems from unauthorized creation, deletion or modification of key data or all Java VM-accessible data through the Oracle Net network.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
甲骨文
Published
2025-10-21
Last Modified
2026-02-24
References
https://access.redhat.com/security/cve/cve-2025-61881 https://www.oracle.com/security-alerts/cpuoct2025.html
Patch
https://www.oracle.com/security-alerts/cpuoct2025.html
Share on: