CVE-2013-3762

2013-10-1615:55:28

oracle

web.nvd.nist.gov

cve-2013-3762

oracle

enterprise manager

grid control

em base platform

em db control

schema management

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

Low

EPSS

0.001

Percentile

50.5%

JSON

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2, 12.1.0.3, and 12.1.0.4 allows remote attackers to affect integrity via unknown vectors related to Schema Management.

Affected configurations

Nvd

Node

oracleenterprise_manager_grid_controlMatch10.2.0.5

oracleenterprise_manager_grid_controlMatch11.1.0.1

Node

oracleenterprise_manager_plugin_for_database_controlMatch12.1.0.2

oracleenterprise_manager_plugin_for_database_controlMatch12.1.0.3

oracleenterprise_manager_plugin_for_database_controlMatch12.1.0.4

Node

oracleenterprise_manager_database_controlMatch11.1.0.7

oracleenterprise_manager_database_controlMatch11.2.0.2

oracleenterprise_manager_database_controlMatch11.2.0.3

VendorProductVersionCPE
oracleenterprise_manager_grid_control10.2.0.5cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:*:*:*:*:*:*:*
oracleenterprise_manager_grid_control11.1.0.1cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:*:*:*:*:*:*:*
oracleenterprise_manager_plugin_for_database_control12.1.0.2cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.2:*:*:*:*:*:*:*
oracleenterprise_manager_plugin_for_database_control12.1.0.3cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.3:*:*:*:*:*:*:*
oracleenterprise_manager_plugin_for_database_control12.1.0.4cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.4:*:*:*:*:*:*:*
oracleenterprise_manager_database_control11.1.0.7cpe:2.3:a:oracle:enterprise_manager_database_control:11.1.0.7:*:*:*:*:*:*:*
oracleenterprise_manager_database_control11.2.0.2cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.2:*:*:*:*:*:*:*
oracleenterprise_manager_database_control11.2.0.3cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	enterprise_manager_grid_control	10.2.0.5	cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:::::::*
oracle	enterprise_manager_grid_control	11.1.0.1	cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:::::::*
oracle	enterprise_manager_plugin_for_database_control	12.1.0.2	cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.2:::::::*
oracle	enterprise_manager_plugin_for_database_control	12.1.0.3	cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.3:::::::*
oracle	enterprise_manager_plugin_for_database_control	12.1.0.4	cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.4:::::::*
oracle	enterprise_manager_database_control	11.1.0.7	cpe:2.3:a:oracle:enterprise_manager_database_control:11.1.0.7:::::::*
oracle	enterprise_manager_database_control	11.2.0.2	cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.2:::::::*
oracle	enterprise_manager_database_control	11.2.0.3	cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.3:::::::*