| Vulnerability Name: | CVE-2013-0372 (CCN-81261) | ||||||||
| Assigned: | 2012-12-07 | ||||||||
| Published: | 2013-01-15 | ||||||||
| Updated: | 2015-10-08 | ||||||||
| Summary: | Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 11.1.0.1 and 12.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2 allows remote attackers to affect integrity via unknown vectors related to Distributed/Cross DB Features. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
| ||||||||
| CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N) 3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||
| Vulnerability Consequences: | Unknown | ||||||||
| References: | Source: MITRE Type: CNA CVE-2013-0372 Source: HP Type: UNKNOWN HPSBST02955 Source: CCN Type: SA51876 Oracle Database Multiple Vulnerabilities Source: CCN Type: SA51884 Oracle Enterprise Manager Grid Control Multiple Vulnerabilities Source: SECUNIA Type: UNKNOWN 57126 Source: MANDRIVA Type: UNKNOWN MDVSA-2013:150 Source: CCN Type: Oracle Web site Oracle Critical Patch Update Advisory - January 2013 Source: CONFIRM Type: Vendor Advisory http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html Source: BID Type: UNKNOWN 57378 Source: CCN Type: BID-57378 Oracle Enterprise Manager Grid Control CVE-2013-0372 SQL Injection Vulnerability Source: XF Type: UNKNOWN oracle-cpujan2013-cve20130372(81261) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration 3: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||