CVE-2017-10120

Name of the Vulnerable Software and Affected Versions Oracle Database Server version 12.1.0.2

Description The issue affects the RDBMS Security component of Oracle Database Server, allowing a high-privileged attacker with Create Session and Select Any Dictionary privileges to compromise RDBMS Security. This can result in unauthorized update, insert, or delete access to some RDBMS Security accessible data. The vulnerability is difficult to exploit and requires logon to the infrastructure where RDBMS Security executes.

Recommendations For Oracle Database Server version 12.1.0.2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.