What is CVE-2017-10120?

CVE-2017-10120 is a low-severity vulnerability in Oracle Database_server. CVSS score: 1.9/10. Published 2017-08-08.

How severe is CVE-2017-10120?

Low severity. CVSS v3 base score is 1.9 out of 10.

Vulnerability in Oracle Database_server

CVE-2017-10120

Vulnerability in the RDBMS Security component of Oracle Database Server. The supported version that is affected is 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Create Session, Select Any Dictionary pr…

EPSS: 0.001 (24.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 1.9 (Low). Vector: CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N.

Affected products

Oracle Database_server — versions 12.1.0.2
Oracle Corporation Database — versions 12.1.0.2

References

secalert_us@oracle.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
secalert_us@oracle.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
secalert_us@oracle.com (x_refsource_CONFIRM, Patch, Vendor Advisory)

Frequently asked questions

What is CVE-2017-10120?: CVE-2017-10120 is a low-severity vulnerability in Oracle Database_server. CVSS score: 1.9/10. Published 2017-08-08.
How severe is CVE-2017-10120?: Low severity. CVSS v3 base score is 1.9 out of 10.