| Vulnerability Name: | CVE-2011-0811 (CCN-68605) | ||||||||
| Assigned: | 2011-07-20 | ||||||||
| Published: | 2011-07-20 | ||||||||
| Updated: | 2011-10-05 | ||||||||
| Summary: | Unspecified vulnerability in the Enterprise Config Management component in Oracle Database Server 10.1.0.5, 10.2.0.3, and 10.2.0.4, and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5, allows local users to affect confidentiality via unknown vectors. | ||||||||
| CVSS v3 Severity: | 6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
| ||||||||
| CVSS v2 Severity: | 4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N) 3.7 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N/E:U/RL:OF/RC:C)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:N/A:N/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||
| References: | Source: MITRE Type: CNA CVE-2011-0811 Source: CCN Type: SA45274 Oracle Database Multiple Vulnerabilities Source: CCN Type: Oracle Critical Patch Update Advisory - July 2011 Oracle Critical Patch Update Advisory - July 2011 Source: CONFIRM Type: Patch, Vendor Advisory http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html Source: CCN Type: OSVDB ID: 73936 Oracle JD Edwards EnterpriseOne Server / Tools JDENET Kernel Message Parsing Remote DoS Source: CCN Type: BID-48735 Oracle Database Server CVE-2011-0811 Local Enterprise Config Management Vulnerability Source: CERT Type: US Government Resource TA11-201A Source: XF Type: UNKNOWN ora-scp-act-unspec(68605) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||