CVE-2012-1743 - Unspecified vulnerability in the Oracle Clinical Remote Data Capture Option component in Oracle Indu

CVE-2012-1743

Summary

Unspecified vulnerability in the Oracle Clinical Remote Data Capture Option component in Oracle Industry Applications 4.6.0.x, 4.6.2, and 4.6.3 allows remote authenticated users to affect confidentiality, related to HTML Surround.

References

Vulnerable Configurations

cpe:2.3:a:oracle:industry_applications:4.6.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:industry_applications:4.6.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:industry_applications:4.6.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:industry_applications:4.6.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:industry_applications:4.6.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:industry_applications:4.6.3:*:*:*:*:*:*:*

CVSS

Base:	2.8 (as of 29-08-2017 - 01:31)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	MULTIPLE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:M/Au:M/C:P/I:N/A:N

refmap via4

bid	54563
confirm	http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
mandriva	MDVSA-2013:150
osvdb	83972
sectrack	1027266
xf	clinicalremote-html-info-disc(77040)

Last major update

29-08-2017 - 01:31

Published

17-07-2012 - 22:55

Last modified

29-08-2017 - 01:31