CNNVD-202601-3147 Information
CNNVD ID
CNNVD-202601-3147
Related CVE
- CNNVD Published: 2026-01-20
Description (Chinese)
Oracle Database Server是美国甲骨文(Oracle)公司的一套关系数据库管理系统。该数据库管理系统提供数据管理、分布式处理等功能。 Oracle Database Server的Java VM 19.3版本至19.29版本和21.3版本至21.20版本存在安全漏洞,该漏洞源于高权限攻击者可通过Oracle Net网络访问进行攻击,可能导致Java VM挂起或频繁崩溃。
Description (English)
Oracle Database Server is a relationship database management system for Oracle. The database management system provides data management, distributed processing and so on. There is a security gap in Java VM 19.3 to 19.29 and 21.3 to 21.20 for Oracle Database Server, which stems from the fact that high-authorized assailants can attack through Oracle Net, which could lead to Java VM hanging or frequent collapse.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
甲骨文
Published
2026-01-20
Last Modified
2026-02-24
References
https://access.redhat.com/security/cve/cve-2026-21975 https://www.oracle.com/security-alerts/cpujan2026.html
Patch
https://www.oracle.com/security-alerts/cpujan2026.html
Share on: