CVE-2023-22074 PoC — Oracle Database Server 安全漏洞

Source

https://github.com/emad-almousa/CVE-2023-22074

Associated Vulnerability

Title:Oracle Database Server 安全漏洞 (CVE-2023-22074)
Description:Oracle Database Server是美国甲骨文（Oracle）公司的一套关系数据库管理系统。该数据库管理系统提供数据管理、分布式处理等功能。 Oracle Database Server 的 Oracle Database Sharding 组件 19.3 版本到 19.20 版本和 21.3 版本到 21.11 版本存在安全漏洞，该漏洞源于允许具有创建会话、选择任何字典权限并通过 Oracle Net 进行网络访问的高权限攻击者破坏 Oracle 数据库分片。

Description

CVE-2023-22074

Readme

# CVE-2023-22074
CVE-2023-22074
vulnerability in oracle database sharding component [19c,21c,23c]
https://databasesecurityninja.wordpress.com/2023/10/25/cve-2023-22074-oracle-database-password-hash-exposure-in-sharding-component/

File Snapshot


 [4.0K]  /data/pocs/329e660c033984bffc7cee410ebd843cd34d6f7e
└── [ 232]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!