ID CVE-2011-0855
Summary Unspecified vulnerability in the InForm component in Oracle Industry Applications 4.5, 4.6, and 5.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Core.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:industry_applications:4.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:industry_applications:4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:industry_applications:4.6:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:industry_applications:4.6:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:industry_applications:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:industry_applications:5.0:*:*:*:*:*:*:*
CVSS
Base: 5.5 (as of 02-08-2012 - 04:00)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:S/C:P/I:P/A:N
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html
Last major update 02-08-2012 - 04:00
Published 20-04-2011 - 10:55
Last modified 02-08-2012 - 04:00
Back to Top