What is CVE-2022-21247?

A low-severity vulnerability in Oracle Database Server allows high-privileged attackers to gain unauthorized read access to sensitive data. Organizations using affected versions should prioritize patching to mitigate risks.

What is the severity of CVE-2022-21247?

CVE-2022-21247 has a severity rating of LOW with a CVSS base score of 2.7.

CVE-2022-21247 | Low Vulnerability in Oracle Database Server

CVE-2022-21247 is a vulnerability in the Core RDBMS component of Oracle Database Server, specifically impacting supported versions 12.2.0.1 and 19c. This vulnerability allows a high privileged attacker, possessing the Create Session and Execute Catalog Role privileges and having network access via Oracle Net, to compromise the Core RDBMS. The vulnerability is classified with a CVSS 3.1 Base Score of 2.7, indicating a low severity primarily due to its confidentiality impact.

Successful exploitation can result in unauthorized read access to a subset of Core RDBMS accessible data. Organizations that rely on these database versions should be aware of this risk and the potential for data exposure.

Given the nature of this vulnerability, organizations should prioritize patching immediately to prevent potential unauthorized data access. The urgency is heightened due to the easily exploitable nature of the vulnerability, which can be accessed over the network.

The last modification of this vulnerability was recorded on November 21, 2024, indicating ongoing attention and the need for organizations to stay informed about security updates and patches from Oracle.

Vulnerability Details

This vulnerability allows high privileged attackers to exploit the Core RDBMS of Oracle Database Server, affecting versions 12.2.0.1 and 19c. It has a CVSS 3.1 Base Score of 2.7, categorized as low severity. The potential impacts are primarily confidentiality-related, as attackers may gain unauthorized access to sensitive data.

Technical Analysis

The root cause of CVE-2022-21247 lies in the Core RDBMS component of the Oracle Database Server, where insufficient access controls allow high privileged users to exploit the system. The attack vector is network-based, requiring minimal complexity and high privileges to execute. There is no user interaction required for exploitation, which increases the risk for affected systems.

The confidentiality impact is classified as low, indicating that while data may be exposed, the potential for significant harm is limited compared to other vulnerabilities. There are no integrity or availability impacts associated with this vulnerability.

Risk & Impact Analysis

The risk to organizations includes the potential unauthorized access to sensitive data, which can lead to data breaches and compliance issues. The blast radius is somewhat contained due to the requirement of high privileges for exploitation. However, the low CVSS score does not diminish the need for organizations to address this vulnerability proactively.

With a low EPS score of 0.002, this vulnerability is not currently classified as a significant risk but should still be monitored closely. Organizations should address this vulnerability in their priority patch cycle to maintain security and compliance.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected versions of Oracle Database Server include 12.2.0.1 and 19c. Organizations are advised to check their systems for these versions and ensure that they are updated to the latest patches provided by Oracle.

Mitigation & Remediation

For organizations using affected versions, it is critical to apply the latest patches from Oracle. Organizations should validate remediation through penetration testing to ensure that the vulnerabilities have been effectively addressed.

Detection Guidance

Organizations should monitor logs for unusual access patterns, particularly from high privileged accounts. Behavioral anomalies such as unexpected database queries or access attempts should be flagged for further investigation. Regular audits and monitoring can help in early detection of potential exploit attempts.

AppSecure Threat Intelligence Insight

CVE-2022-21247 highlights the importance of maintaining secure configurations and access controls within database environments. Organizations should be aware of vulnerabilities that may not be classified as critical but can still pose a risk to data confidentiality. Adopting a comprehensive security strategy that includes regular updates, auditing, and vulnerability management programs can significantly reduce exposure to such vulnerabilities.

As organizations adapt to new security challenges, understanding the landscape of vulnerabilities and the nature of exploitable weaknesses is essential. Engaging in proactive security measures such as penetration testing methodologies can provide insights into potential weaknesses and help organizations fortify their defenses.

Organizations should also consider engaging in security testing best practices to ensure comprehensive coverage against various attack vectors.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2022-21247: Low Vulnerability in Oracle Database Server