CVE-2011-3519 - Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite

CVE-2011-3519

Summary

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.2 and 12.1.3 allows remote authenticated users to affect confidentiality, related to REST Services.

References

http://secunia.com/advisories/46504
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
http://www.securityfocus.com/bid/50233

Vulnerable Configurations

cpe:2.3:a:oracle:e-business_suite:12.1.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:12.1.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:12.1.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:e-business_suite:12.1.3:*:*:*:*:*:*:*

CVSS

Base:	3.5 (as of 06-11-2012 - 05:01)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	SINGLE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:M/Au:S/C:P/I:N/A:N

refmap via4

bid	50233
confirm	http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
secunia	46504

Last major update

06-11-2012 - 05:01

Published

18-10-2011 - 22:55

Last modified

06-11-2012 - 05:01