CVE-2013-0372

4 documents4 sources

Severity

4.3MEDIUM

EPSS

0.4%

top 36.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Enterprise Manager Database Control Oracle Enterprise Manager Grid Control Oracle Enterprise Manager Plugin FOR Database Control

Timeline

PublishedJan 17

Latest updateMay 5

Description

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 11.1.0.1 and 12.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2 allows remote attackers to affect integrity via unknown vectors related to Distributed/Cross DB Features.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

▶NVDoracle/enterprise_manager_database_control11.1.0.7, 11.2.0.2, 11.2.0.3+2

▶NVDoracle/enterprise_manager_grid_control11.1.0.1, 12.1.0.1+1

▶NVDoracle/enterprise_manager_plugin12.1.0.2

🔴Vulnerability Details

GHSA

GHSA-hmrj-c8mx-hq45: Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 11↗2022-05-05

▶

CVEList

CVE-2013-0372: Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 11↗2013-01-17

▶

💬Community

Bugzilla

CVE-2013-6468 Drools: Remote Java Code Execution in MVEL↗2014-01-09

▶