CVE-2012-3151 — Oracle Database Server vulnerability

4 documents4 sources

Severity

3.3LOWNVD

EPSS

0.3%

top 51.54%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Database Server

Timeline

PublishedOct 16

Latest updateMay 17

Description

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3, when running on Unix and Linux platforms, allows local users to affect integrity and availability via unknown vectors.

CVSS vector

AV:L/AC:M/C:N/I:P/A:PExploitability: 3.4 | Impact: 4.9

Affected Packages1 packages

▶NVDoracle/database_server5 versions+4

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-frjm-927q-mqh8: Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10↗2022-05-17

▶

CVEList

CVE-2012-3151: Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10↗2012-10-16

▶

💬Community

Bugzilla

CVE-2012-4414 mysql: Multiple SQL injection flaws by generation of binlog entries↗2012-08-27

▶