How-To - Addressing Security Scan Findings on Exadata and SuperCluster (Doc ID 2182530.1)

Last updated on SEPTEMBER 11, 2017

Applies to:

Oracle SuperCluster T5-8 Hardware - Version All Versions and later
Oracle SuperCluster M7 Hardware - Version All Versions and later
SPARC SuperCluster T4-4 - Version All Versions and later
Exadata X5-2 Hardware - Version All Versions and later
Exadata X4-2 Hardware - Version All Versions and later
Information in this document applies to any platform.

Goal

The goal of this document is to assist in determining if one or more identified CVEs apply to an Oracle Exadata or SuperCluster system.

For vulnerabilities affecting Oracle Database Appliances (ODA), see Doc ID 2195990.1.

For vulnerabilities affecting the Cisco 4948 switches in Engineered Systems, see Doc ID 2232764.1.

For vulnerabilities that do not have a CVE AND require the arcfour cipher to be disabled, see Doc ID 2198093.1.

For vulnerabilities that do not have a CVE AND required changing the default SNMP community string, see Doc ID 2181438.1.

For CVEs specific to a particular application such as Enterprise Manager, also review Doc ID 1074055.1.

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms