Number: AV18-131
Date: 14 August 2018
Purpose
The purpose of this advisory is to bring attention to a recent security alert for Oracle.
Assessment
Oracle has issued a security alert advisory that addresses a vulnerability in Oracle Database. A successful exploitation of that vulnerability can result in complete compromise of the Oracle Database and shell access to the underlying server.
Versions Affected:
- Oracle Database versions 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18
CVE Reference: CVE-2018-3110
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.
References:
http://www.oracle.com/technetwork/security-advisory/alert-cve-2018-3110-5032149.html