Information
The DBA role provides full administrative privileges over the database, allowing grantees to perform any operation. Unauthorized users with this role can access and modify critical database configurations and objects.
Granting DBA privileges to unauthorized users increases the risk of data breaches, unauthorized modifications, and privilege escalation attacks. Access to this role should be limited to authorized administrators.
Solution
To remediate this setting, execute the following SQL statement, keeping in mind if this is granted in both container and pluggable database, you must connect to both places to revoke. Please ensure proper impact analysis is done before revoking the privilege from a role.
REVOKE DBA FROM <grantee>;
In the case of a grant via a role:
REVOKE <rolename> FROM <grantee>;