VIR Vulnerability Intelligence Relay

CVE-2015-0455

medium
Published 2015-04-16 · Modified 2026-05-06
CVSS v3
CVSS v2
6.8
VIR risk
6.8

Description

Unspecified vulnerability in the XDB - XML Database component in Oracle Database Server 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Application impact
VendorProductVersionsFixed
oracle oracledatabase_server11.1.0.7
oracle oracledatabase_server11.2.0.3
oracle oracledatabase_server11.2.0.4
oracle oracledatabase_server12.1.0.1
oracle oracledatabase_server12.1.0.2

References

Verify integrity in audit chain (admin only). AS-IS.