CVE-2012-1737

critical

Description

Unspecified vulnerability in the Enterprise Manager for Oracle Database component in Oracle Database Server 11.1.0.7, 11.2.0.2, and 11.2.0.3, and Enterprise Manager Grid Control EM Base Platform 10.2.0.5, EM Base Platform 11.1.0.1, EM Plugin for DB 12.1.0.1, and EM Plugin for DB 12.1.0.2, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to DB Performance Advisories/UIs.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/77014

http://www.securitytracker.com/id?1027260

http://www.securityfocus.com/bid/54569

http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://osvdb.org/83945

http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00018.html

Details

Source: Mitre, NVD

Published: 2012-07-17

Updated: 2017-08-29

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 10

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Severity: Critical