ID CVE-2011-2318
Summary Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.2.4.0, 10.0.2.0, 10.3.3.0, 10.3.4.0, and 10.3.5.0 allows local users to affect confidentiality, related to WLS Security.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:fusion_middleware:9.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:9.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:10.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:10.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:10.3.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:10.3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:10.3.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:10.3.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:10.3.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:10.3.5:*:*:*:*:*:*:*
CVSS
Base: 1.5 (as of 19-01-2012 - 05:00)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:L/AC:M/Au:S/C:P/I:N/A:N
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
osvdb 76494
Last major update 19-01-2012 - 05:00
Published 18-10-2011 - 22:55
Last modified 19-01-2012 - 05:00
Back to Top