CVE-2019-2708

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Oracle Berkeley DB versions prior to 6.138 Oracle Berkeley DB versions prior to 6.2.38 Oracle Berkeley DB versions prior to 18.1.32

Description A vulnerability in the Data Store component of Oracle Berkeley DB allows a low-privileged attacker with local logon privileges to compromise the Data Store. Successful attacks can result in an unauthorized ability to cause a partial denial of service (DoS) of the Data Store.

Recommendations For versions prior to 6.138, update to version 6.138 or later. For versions prior to 6.2.38, update to version 6.2.38 or later. For versions prior to 18.1.32, update to version 18.1.32 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALSA-2021:1675

AZL-34927

AZL-6630

CESA-2021_1675

CVE-2019-2708

MGASA-2021-0057

OESA-2021-1156

OPENSUSE-SU-2022_4214-1

OPENSUSE-SU-2024:14246-1

RHSA-2021:1675

RHSA-2021_1675

RLSA-2021:1675

SUSE-SU-2022:4214-1

SUSE-SU-2022:4289-1

SUSE-SU-2022_4214-1

SUSE-SU-2022_4289-1

SUSE-SU-2025:20067-1

Affected Products

Almalinux

Centos

Oracle Berkeley Db

Red Hat

Rocky Linux

Suse

CVE-2019-2708

Related Identifiers

Affected Products

References · 30