An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.04.2-01be-daa4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.04.2-01be-daa4
Open sidebar
Navigate
Top
Search
Checks (
136
)
Print
Changes
Pages (
3/10
)
Oracle Database 12c STIG
Oracle Database 12c Security Technical Implementation Guide
v3 r3 (Released Jan. 30, 2025)
v3 r2 (Released Oct. 24, 2024)
v3 r1 (Released July 24, 2024)
v2 r9 (Released Jan. 24, 2024)
v2 r8 (Released July 26, 2023)
v2 r7 (Released April 27, 2023)
v2 r6 (Released Jan. 26, 2023)
v2 r5 (Released July 27, 2022)
v2 r4 (Released April 27, 2022)
v2 r3 (Released Jan. 27, 2022)
v2 r2 (Released Oct. 27, 2021)
v2 r1 (Released April 23, 2021)
v1 r18 (Released July 24, 2020)
v1 r17 (Released April 24, 2020)
v1 r16 (Released Jan. 24, 2020)
v1 r15 (Released Oct. 25, 2019)
v1 r14 (Released Aug. 23, 2019)
v1 r13 (Released July 26, 2019)
v1 r12 (Released Jan. 25, 2019)
v1 r11 (Released Oct. 26, 2018)
v1 r10 (Released April 27, 2018)
v1 r9 (Released Jan. 26, 2018)
v1 r8 (Released July 28, 2017)
v1 r7 (Released April 28, 2017)
v1 r6 (Released Jan. 27, 2017)
ID
Vuln ID
Title
Cat
Status
O121-BP-025400
V-219865
Access to DBMS software files and directories must not be granted to unauthorized users.
Cat II
O121-BP-025500
V-219866
Replication accounts must not be granted DBA privileges.
Cat II
O121-BP-025600
V-219867
Network access to the DBMS must be restricted to authorized personnel.
Cat II
O121-BP-025800
V-219868
Changes to configuration options must be audited.
Cat II
O121-BP-026200
V-219871
Changes to DBMS security labels must be audited.
Cat II
O121-BP-026300
V-219872
Remote database or other external access must use fully-qualified names.
Cat II
O121-BP-026400
V-219873
The /diag subdirectory under the directory assigned to the DIAGNOSTIC_DEST parameter must be protected from unauthorized access.
Cat II
O121-BP-026500
V-219874
Remote administration must be disabled for the Oracle connection manager.
Cat II
O121-BP-026600
V-219875
Network client connections must be restricted to supported versions.
Cat II
O121-C1-004500
V-237696
DBA OS accounts must be granted only those host system privileges necessary for the administration of the DBMS.
Cat I
O121-C1-011100
V-237697
Oracle software must be evaluated and patched against newly found vulnerabilities.
Cat I
O121-C1-015000
V-237698
DBMS default accounts must be assigned custom passwords.
Cat I
O121-C1-015400
V-220263
The DBMS, when using PKI-based authentication, must enforce authorized access to the corresponding private key.
Cat I
O121-C1-019700
V-237699
The DBMS must employ cryptographic mechanisms preventing the unauthorized disclosure of information during transmission unless the transmitted data is otherwise protected by alternative physical measures.
Cat I
O121-C2-000100
V-220264
The DBMS must limit the number of concurrent sessions for each system account to an organization-defined number of sessions.
Cat II
Prev
1
2
3
4
5
6
7
...10
Next
Print
Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Version Changes
If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.