QID 20242

Date Published: 2022-01-19

QID 20242: Oracle Database Critical Patch Update - January 2022 (Unauthenticated)

Oracle Database quarterly patches are proactive cumulative patches containing recommended bug fixes that are released on a regular schedule.

Affected Software:
Oracle Database

QID Detection Logic (Unauthenticated):
This QID connects the remote server's Oracle listener and reviews the Oracle banner version.

Successful exploitation could allow an attacker to compromise the database.

  • CVSS V3 rated as Medium - 5.9 severity.
  • CVSS V2 rated as Medium - 5 severity.
  • Solution
    Customers are requested to refer to CPUJan2022 to obtain details about how to deploy the update.

    Vendor References
    Software Advisories
    Advisory ID Software Component Link
    CPUJAN2022 URL Logo support.oracle.com/rs?type=doc&id=2817011.1