N/A

Vulnerability in the Oracle Clusterware component of Oracle Support Tools (subcomponent: Trace File Analyzer (TFA) Collector). The supported version that is affected is 12.1.0.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Clusterware. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Clusterware accessible data as well as unauthorized read access to a subset of Oracle Clusterware accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Clusterware. CVSS 3.0 Base Score 5.6 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L).

N/A

N/A

Oracle Support Tools Clusterware组件访问控制错误漏洞

Oracle Support Tools是美国甲骨文（Oracle）公司的一套Oracle支持工具。Clusterware是一套可移植的集群软件。 Oracle Support Tools中的Clusterware组件12.1.0.2.0版本的Trace File Analyzer（TFA）Collector子组件存在安全漏洞。攻击者可利用该漏洞未授权读取、更新、插入或删除数据，造成拒绝服务，影响数据的保密性、可用性和完整性。

N/A

N/A