Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-0525
HistoryMay 03, 2012 - 5:55 p.m.

CVE-2012-0525

2012-05-0317:55:01
[email protected]
web.nvd.nist.gov
5

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:P/A:N

AI Score

5.1

Confidence

Low

EPSS

0.001

Percentile

47.8%

JSON

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Database Server 11.1.0.7, 11.2.0.2, and 11.2.0.3, and Oracle Enterprise Manager Grid Control 10.2.0.5 and 11.1.0.1, allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Enterprise Config Management.

Affected configurations

Nvd
Node
oracledatabase_serverMatch11.1.0.7
OR
oracledatabase_serverMatch11.2.0.2
OR
oracledatabase_serverMatch11.2.0.3
Node
oracleenterprise_manager_grid_controlMatch10.2.0.5
OR
oracleenterprise_manager_grid_controlMatch11.1.0.1
VendorProductVersionCPE
oracledatabase_server11.1.0.7cpe:2.3:a:oracle:database_server:11.1.0.7:*:*:*:*:*:*:*
oracledatabase_server11.2.0.2cpe:2.3:a:oracle:database_server:11.2.0.2:*:*:*:*:*:*:*
oracledatabase_server11.2.0.3cpe:2.3:a:oracle:database_server:11.2.0.3:*:*:*:*:*:*:*
oracleenterprise_manager_grid_control10.2.0.5cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:*:*:*:*:*:*:*
oracleenterprise_manager_grid_control11.1.0.1cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:*:*:*:*:*:*:*

Related

cvelist 1
cve 1
prion 1
packetstorm 1
securityvulns 2
zdt 1
suse 1
nessus 1
threatpost 1
oracle 1
cvelist
cvelist
CVE-2012-0525
2012-05-03 17:18:00
cve
cve
CVE-2012-0525
2012-05-03 17:55:01
prion
prion
Design/Logic Flaw
2012-05-03 17:55:00
packetstorm
packetstorm
Oracle Enterprise Manager searchPage SQL Injection
2012-04-19 00:00:00
securityvulns
securityvulns
SQL Injection in Oracle Enterprise Manager (searchPage web page) (CVE-2012-0525)
2012-04-22 00:00:00
Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities
2012-12-02 00:00:00
zdt
zdt
Oracle Enterprise Manager SQL injection Vulnerability
2012-04-20 00:00:00
suse
suse
Security update for oracle-update (important)
2012-08-22 17:08:38
nessus
nessus
Oracle Database Multiple Vulnerabilities (April 2012 CPU)
2012-04-19 00:00:00
threatpost
threatpost
Oracle Patches 88 Vulnerabilities, Including Some that Allow Remote Exploits Without Authentication
2012-04-19 02:20:35
oracle
oracle
Oracle Critical Patch Update - April 2012
2012-07-19 00:00:00

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:P/A:N

AI Score

5.1

Confidence

Low

EPSS

0.001

Percentile

47.8%

JSON
Related for NVD:CVE-2012-0525
cvelist1cve1prion1packetstorm1securityvulns2zdt1suse1nessus1threatpost1oracle1