How severe is CVE-2023-21986?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.7 out of 10.

What type of vulnerability is CVE-2023-21986?

This is classified as NVD-CWE-Other, which is a common weakness in software security.

CVE-2023-21986

MEDIUM Year: 2023

CVSS v3 Score

5.7

Medium

Weakness Type

NVD-CWE-Other

View all →

Vulnerability Description

Vulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Native Image). Supported versions that are affected are Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle GraalVM Enterprise Edition executes to compromise Oracle GraalVM Enterprise Edition. While the vulnerability is in Oracle GraalVM Enterprise Edition, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle GraalVM Enterprise Edition accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle GraalVM Enterprise Edition. CVSS 3.1 Base Score 5.7 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L).

CVE-2016-3464

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 12.0.3 allows remote authenticated users to affect confidentiality via vectors related t...

NVD-CWE-Other2016

CVE-2016-3472

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the Siebel Engineering - Installer and Deployment component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confi...

NVD-CWE-Other2016

CVE-2016-5537

MEDIUM

CVSS:5.7(Medium)

Unspecified vulnerability in the NetBeans component in Oracle Fusion Middleware 8.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous in...

NVD-CWE-Other2016

CVE-2017-10051

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). The supported version that is affected is 8.5.3.0. Easily exploitable vulner...

NVD-CWE-Other2017

CVE-2017-10389

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Oracle Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: PMS). Supported versions that are affected are 8.10.1 and 8.10.2. Easily exploitable vulnerab...

NVD-CWE-Other2017

CVE-2017-3276

MEDIUM

CVSS:5.7(Medium)

Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel Zones virtualized block driver). The supported version that is affected is 11.3. Difficult to exploit ...

NVD-CWE-Other2017

CVE-2023-21986

Vulnerability Description

Related Vulnerabilities

CVE-2016-3464

CVE-2016-3472

CVE-2016-5537

CVE-2017-10051

CVE-2017-10389

CVE-2017-3276