CVE-2013-5766

2013-10-1615:55:34

oracle

web.nvd.nist.gov

cve-2013-5766

oracle enterprise manager

grid control

em base platform

remote attack

integrity

db performance advisories

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

Low

EPSS

0.001

Percentile

50.5%

JSON

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2 and 12.1.0.3 allows remote attackers to affect integrity via unknown vectors related to DB Performance Advisories/UIs.

Affected configurations

Nvd

Node

oracleenterprise_manager_database_controlMatch11.1.0.7

oracleenterprise_manager_database_controlMatch11.2.0.2

oracleenterprise_manager_database_controlMatch11.2.0.3

Node

oracleenterprise_manager_grid_controlMatch10.2.0.5

oracleenterprise_manager_grid_controlMatch11.1.0.1

Node

oracleenterprise_manager_plugin_for_database_controlMatch12.1.0.2

oracleenterprise_manager_plugin_for_database_controlMatch12.1.0.3

VendorProductVersionCPE
oracleenterprise_manager_database_control11.1.0.7cpe:2.3:a:oracle:enterprise_manager_database_control:11.1.0.7:*:*:*:*:*:*:*
oracleenterprise_manager_database_control11.2.0.2cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.2:*:*:*:*:*:*:*
oracleenterprise_manager_database_control11.2.0.3cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.3:*:*:*:*:*:*:*
oracleenterprise_manager_grid_control10.2.0.5cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:*:*:*:*:*:*:*
oracleenterprise_manager_grid_control11.1.0.1cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:*:*:*:*:*:*:*
oracleenterprise_manager_plugin_for_database_control12.1.0.2cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.2:*:*:*:*:*:*:*
oracleenterprise_manager_plugin_for_database_control12.1.0.3cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	enterprise_manager_database_control	11.1.0.7	cpe:2.3:a:oracle:enterprise_manager_database_control:11.1.0.7:::::::*
oracle	enterprise_manager_database_control	11.2.0.2	cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.2:::::::*
oracle	enterprise_manager_database_control	11.2.0.3	cpe:2.3:a:oracle:enterprise_manager_database_control:11.2.0.3:::::::*
oracle	enterprise_manager_grid_control	10.2.0.5	cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:::::::*
oracle	enterprise_manager_grid_control	11.1.0.1	cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:::::::*
oracle	enterprise_manager_plugin_for_database_control	12.1.0.2	cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.2:::::::*
oracle	enterprise_manager_plugin_for_database_control	12.1.0.3	cpe:2.3:a:oracle:enterprise_manager_plugin_for_database_control:12.1.0.3:::::::*