Oracle has released Vulnerability-related.PatchVulnerability a critical patch update addressing Vulnerability-related.PatchVulnerability more than 300 vulnerabilities across several of its products – including one flaw with a CVSS 3.0 score of 10 that could allow the takeover of the company ’ s software package , Oracle GoldenGate . Of the 301 security flaws that were fixed Vulnerability-related.PatchVulnerability in this month ’ s Oracle patch , 45 had a severity rating of 9.8 on the CVSS scale . “ Due to the threat posed by a successful attack , Oracle strongly recommends that customers apply Vulnerability-related.PatchVulnerability Critical Patch Update fixes as soon as possible , ” the company said in its Tuesday advisory . The highest-severity flaw ( CVE-2018-2913 ) lies in Vulnerability-related.DiscoverVulnerability the Monitoring Manager component of Oracle GoldenGate , which is the company ’ s comprehensive software package that allows data to be replicated in heterogeneous data environments . According to the National Vulnerability Database , the glitch is an easily exploitable vulnerability that allows unauthenticated attacker with network access via the TCP protocol to compromise Oracle GoldenGate . The flaw was discovered Vulnerability-related.DiscoverVulnerability by Jacob Baines , a researcher with Tenable . “ CVE-2018-2913 is a stack buffer overflow in GoldenGate Manager , ” Baines told Vulnerability-related.DiscoverVulnerability Threatpost . “ The Manager listens on port 7809 where it accepts GoldenGate Software Command Interface ( GGSCI ) commands . Tenable found that a remote unauthenticated attacker can trigger a stack buffer overflow by sending a GGSCI command that is longer than expected. ” The attack is not complex and a bad actor could be remote and unauthenticated . Making matters worse , an attacker could compromise other products after initially attacking GoldenGate , the advisory warned . “ While the vulnerability is in Oracle GoldenGate , attacks may significantly impact additional products , ” the note said Vulnerability-related.DiscoverVulnerability . “ Successful attacks of this vulnerability can result in takeover of Oracle GoldenGate. ” The flaw impacts Vulnerability-related.DiscoverVulnerability versions 12.1.2.1.0 , 12.2.0.2.0 , and 12.3.0.1.0 in Oracle GoldenGate . Currently no working exploits for the flaw have been discovered Vulnerability-related.DiscoverVulnerability in the wild , according to the release . It should be noted that For Linux and Windows platforms , the flaw ’ s CVSS score is 9.0 because the access complexity is lower ( only rated high , not critical ) ; while for all other platforms , the CVSS score is a critical 10 . Two other flaws were also discovered Vulnerability-related.DiscoverVulnerability in Oracle GoldenGate ( CVE-2018-2912 and CVE-2018-2914 ) , with ratings of 7.5 on the CVSS scale ; those vulnerabilities weren ’ t nearly as severe . “ All of these vulnerabilities may be remotely exploitable without authentication , i.e. , may be exploited Vulnerability-related.DiscoverVulnerability over a network without requiring user credentials . ”

Onapsis discovered Vulnerability-related.DiscoverVulnerability several high risk vulnerabilities affecting Vulnerability-related.DiscoverVulnerability SAP HANA platforms . If exploited Vulnerability-related.DiscoverVulnerability , these vulnerabilities would allow an attacker , whether inside or outside the organization , to take full control of the SAP HANA platform remotely , without the need of a username and password . “ This level of access would allow an attacker to perform any action Attack.Databreach over the business information and processes supported by HANA , including creating , stealing Attack.Databreach , altering , and/or deleting sensitive information . If these vulnerabilities are exploited Vulnerability-related.DiscoverVulnerability , organizations may face severe business consequences , ” said Sebastian Bortnik , Head of Research , Onapsis . The vulnerabilities affect Vulnerability-related.DiscoverVulnerability a specific SAP HANA component named SAP HANA User Self Service , which is not enabled by default . The following list details the affected HANA 2 and HANA versions : “ We hope organizations will use this threat intelligence to assess their systems and confirm that they are not currently using this component , and therefore are not affected by these risks . Even if the service is not enabled , we still recommend that these organizations apply Vulnerability-related.PatchVulnerability the patches in case a change is made to the system in the future , ” continued Bortnik . Onapsis Research Labs originally discovered Vulnerability-related.DiscoverVulnerability the vulnerabilities on the newly released SAP HANA 2 platform , but after additional analysis realized that several older versions were vulnerable Vulnerability-related.DiscoverVulnerability as well . Based on this assessment , it was identified Vulnerability-related.DiscoverVulnerability that the vulnerabilities had been present Vulnerability-related.DiscoverVulnerability in HANA for almost two and a half years , when the User Self Service component was first released . This greatly increases the likelihood that these vulnerabilities have been discovered Vulnerability-related.DiscoverVulnerability by attackers to break into organization ’ s SAP systems . Onapsis worked closely with SAP ’ s Product Security & Engineering teams to help them develop Vulnerability-related.PatchVulnerability the security patches . SAP is releasing the first ever patch for SAP HANA 2 . In this case , default installations are affected and an attacker can elevate privileges if exploited