CVE-2011-0816

2011-07-2022:55:01

[email protected]

web.nvd.nist.gov

vulnerability

cmdb

metadata

instance apis

oracle database server

nvd

cve-2011-0816

5.5 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

37.9%

JSON

Unspecified vulnerability in the CMDB Metadata & Instance APIs component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6 and 10.2.0.5; allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

Affected configurations

NVD

Node

oracledatabase_serverMatch10.1.0.5

oracledatabase_serverMatch10.2.0.3

oracledatabase_serverMatch10.2.0.4

oracledatabase_serverMatch10.2.0.5

oracledatabase_serverMatch11.1.0.7

oracledatabase_serverMatch11.2.0.1

oracledatabase_serverMatch11.2.0.2

Node

oracleenterprise_manager_grid_controlMatch10.1.0.6

oracleenterprise_manager_grid_controlMatch10.2.0.5

CPENameOperatorVersion
oracle:database_serveroracle database servereq10.1.0.5
oracle:database_serveroracle database servereq10.2.0.3
oracle:database_serveroracle database servereq10.2.0.4
oracle:database_serveroracle database servereq10.2.0.5
oracle:database_serveroracle database servereq11.1.0.7
oracle:database_serveroracle database servereq11.2.0.1
oracle:database_serveroracle database servereq11.2.0.2

CPE	Name	Operator	Version
oracle:database_server	oracle database server	eq	10.1.0.5
oracle:database_server	oracle database server	eq	10.2.0.3
oracle:database_server	oracle database server	eq	10.2.0.4
oracle:database_server	oracle database server	eq	10.2.0.5
oracle:database_server	oracle database server	eq	11.1.0.7
oracle:database_server	oracle database server	eq	11.2.0.1
oracle:database_server	oracle database server	eq	11.2.0.2