CVE-2021-2330

Name of the Vulnerable Software and Affected Versions Oracle Database Server version 19c

Description The issue is related to insufficient input validation in the Core RDBMS component of Oracle Database Server. This allows a low-privileged attacker with Create Table privilege and network access via Oracle Net to compromise Core RDBMS, potentially resulting in a partial denial of service.

Recommendations For version 19c, apply the necessary patches or updates to resolve the issue. As a temporary workaround, consider restricting network access via Oracle Net to minimize the risk of exploitation. Additionally, limit the Create Table privilege to authorized users only.