Oracle Fusion Middleware vulnerabilities

CVE-2012-3217 [LOW] CVE-2012-3217: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7.0 allows context-dependent attackers to affect availability, related to Outside In HTML Export SDK.

CVE-2012-3214 [LOW] CVE-2012-3214: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7.0 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters.

CVE-2012-3152 [CRITICAL] CVE-2012-3152: Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1 Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.4, 11.1.1.6, and 11.1.2.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Report Server Component. NOTE: the previous information is from the October 2012 CPU. Oracle has not commented on claims from the origi

CVE-2012-0093 [MEDIUM] CVE-2012-0093: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote attackers to affect integrity via unknown vectors related to Web, a different vulnerability than CVE-2012-0071.

CVE-2012-1686 [MEDIUM] CVE-2012-1686: Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.6 and other versions allows remote attackers to affect integrity via unknown vectors related to Installation.

CVE-2012-0071 [MEDIUM] CVE-2012-0071: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote attackers to affect integrity via unknown vectors related to Web, a different vulnerability than CVE-2012-0093.

CVE-2012-0106 [MEDIUM] CVE-2012-0106: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Web.

CVE-2012-0518 [MEDIUM] CWE-601 CVE-2012-0518: Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware 10.1.4.3.0 allows remote attackers to affect integrity via unknown vectors related to Redirects, a different vulnerability than CVE-2012-3175.

CVE-2012-3153 [MEDIUM] CVE-2012-3153: Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1 Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.4, 11.1.1.6, and 11.1.2.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Servlet. NOTE: the previous information is from the October 2012 CPU. Oracle has not commented on claims from the original researcher tha

CVE-2012-0107 [MEDIUM] CVE-2012-0107: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote attackers to affect availability via unknown vectors related to Web.

CVE-2012-0108 [LOW] CVE-2012-0108: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Web, a different vulnerability than CVE-2012-0086 and CVE-2012-0095.

CVE-2012-0090 [LOW] CVE-2012-0090: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect integrity via unknown vectors related to Web, a different vulnerability than CVE-2012-0092.

CVE-2012-0092 [LOW] CVE-2012-0092: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect integrity via unknown vectors related to Web, a different vulnerability than CVE-2012-0090.

CVE-2012-0086 [LOW] CVE-2012-0086: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Web, a different vulnerability than CVE-2012-0095 and CVE-2012-0108.

CVE-2012-0095 [LOW] CVE-2012-0095: Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Mi Unspecified vulnerability in the Oracle Imaging and Process Management component in Oracle Fusion Middleware 10.1.3.6.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Web, a different vulnerability than CVE-2012-0086 and CVE-2012-0108.

CVE-2012-3135 [CRITICAL] CVE-2012-3135: Unspecified vulnerability in the Oracle JRockit component in Oracle Fusion Middleware 28.2.3 and bef Unspecified vulnerability in the Oracle JRockit component in Oracle Fusion Middleware 28.2.3 and before, and 27.7.2 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CVE-2011-3562 [MEDIUM] CVE-2011-3562: Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.6, an Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 11.1.1.5, 11.1.1.6, and 11.1.2.0 allows remote attackers to affect integrity via unknown vectors.

CVE-2012-3115 [MEDIUM] CVE-2012-3115: Unspecified vulnerability in the Oracle MapViewer component in Oracle Fusion Middleware 10.1.3.1, 11 Unspecified vulnerability in the Oracle MapViewer component in Oracle Fusion Middleware 10.1.3.1, 11.1.1.5, and 11.1.1.6 allows remote attackers to affect integrity via unknown vectors related to Install.

CVE-2012-1741 [MEDIUM] CVE-2012-1741: Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Fusion Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors related to User Administration Pages.

CVE-2012-1749 [MEDIUM] CVE-2012-1749: Unspecified vulnerability in the Oracle MapViewer component in Oracle Fusion Middleware 10.1.3.1 and Unspecified vulnerability in the Oracle MapViewer component in Oracle Fusion Middleware 10.1.3.1 and 11.1.1.5 allows remote attackers to affect confidentiality via unknown vectors related to Oracle Maps.