CVE-2019-2619

Name of the Vulnerable Software and Affected Versions Oracle Database Server versions 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18c

Description The issue is related to a vulnerability in the Portable Clusterware component of Oracle Database Server, which can be exploited by a high-privileged attacker with Grid Infrastructure User privilege and logon to the infrastructure where Portable Clusterware executes. This vulnerability can compromise Portable Clusterware and may significantly impact additional products, potentially resulting in the takeover of Portable Clusterware.

Recommendations For versions 11.2.0.4, 12.1.0.2, 12.2.0.1 and 18c, at the moment, there is no information about a newer version that contains a fix for this vulnerability.