Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2012-3183Oracle Fusion Middleware vulnerability

10 documents4 sources
Severity
4.9MEDIUMNVD
EPSS
2.2%
top 15.67%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Oracle Fusion Middleware
Timeline
PublishedOct 17
Latest updateMay 17

Description

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Advanced UI, a different vulnerability than CVE-2012-3185 and CVE-2012-3186.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 6.8 | Impact: 4.9

Affected Packages1 packages

NVDoracle/fusion_middleware11 versions+10

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

6
GHSA
GHSA-fjq7-xhq9-6w65: Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 62022-05-17
GHSA
GHSA-p5qx-4pvm-qg6w: Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 62022-05-17
GHSA
GHSA-wch5-v2f5-whhh: Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 62022-05-17
CVEList
CVE-2012-3185: Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 62012-10-17
CVEList
CVE-2012-3183: Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 62012-10-17

💥Exploits & PoCs

1
Exploit-DB
Oracle WebCenter Sites (FatWire Content Server) - Multiple Vulnerabilities2012-10-17
CVE-2012-3183 — Oracle Fusion Middleware vulnerability | cvebase