ID CVE-2012-3116Type cveReporter cve@mitre.orgModified 2017-12-22T02:29:00
Description
Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 5.5.06, 6.0, 6.1, and 6.2 allows local users to affect confidentiality via unknown vectors.
{"id": "CVE-2012-3116", "bulletinFamily": "NVD", "title": "CVE-2012-3116", "description": "Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 5.5.06, 6.0, 6.1, and 6.2 allows local users to affect confidentiality via unknown vectors.", "published": "2012-07-17T23:55:00", "modified": "2017-12-22T02:29:00", "cvss": {"score": 1.9, "vector": "AV:L/AC:M/Au:N/C:P/I:N/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3116", "reporter": "cve@mitre.org", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/77023", "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html", "http://www.securityfocus.com/bid/54567", "http://osvdb.org/83960", "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150", "http://www.securitytracker.com/id?1027268"], "cvelist": ["CVE-2012-3116"], "type": "cve", "lastseen": "2021-02-02T05:59:50", "edition": 4, "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:12672"]}, {"type": "oracle", "idList": ["ORACLE:CPUJUL2012-392727"]}], "modified": "2021-02-02T05:59:50", "rev": 2}, "score": {"value": 2.7, "vector": "NONE", "modified": "2021-02-02T05:59:50", "rev": 2}, "vulnersScore": 2.7}, "cpe": ["cpe:/a:oracle:supply_chain_products_suite:6.0.0", "cpe:/a:oracle:supply_chain_products_suite:5.5.06", "cpe:/a:oracle:supply_chain_products_suite:6.2.0", "cpe:/a:oracle:supply_chain_products_suite:6.1.0"], "affectedSoftware": [{"cpeName": "oracle:supply_chain_products_suite", "name": "oracle supply chain products suite", "operator": "eq", "version": "6.2.0"}, {"cpeName": "oracle:supply_chain_products_suite", "name": "oracle supply chain products suite", "operator": "eq", "version": "6.1.0"}, {"cpeName": "oracle:supply_chain_products_suite", "name": "oracle supply chain products suite", "operator": "eq", "version": "5.5.06"}, {"cpeName": "oracle:supply_chain_products_suite", "name": "oracle supply chain products suite", "operator": "eq", "version": "6.0.0"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 1.9, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "LOW", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:oracle:supply_chain_products_suite:6.1.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:supply_chain_products_suite:6.2.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:supply_chain_products_suite:6.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:supply_chain_products_suite:5.5.06:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-noinfo"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:oracle:supply_chain_products_suite:6.1.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:supply_chain_products_suite:6.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:supply_chain_products_suite:5.5.06:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oracle:supply_chain_products_suite:6.2.0:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "83960", "refsource": "OSVDB", "tags": [], "url": "http://osvdb.org/83960"}, {"name": "MDVSA-2013:150", "refsource": "MANDRIVA", "tags": [], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:150"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html", "refsource": "CONFIRM", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html"}, {"name": "1027268", "refsource": "SECTRACK", "tags": [], "url": "http://www.securitytracker.com/id?1027268"}, {"name": "supplychain-transportmgmt-info-disc(77023)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/77023"}, {"name": "54567", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/54567"}], "immutableFields": []}
{"securityvulns": [{"lastseen": "2018-08-31T11:09:49", "bulletinFamily": "software", "cvelist": ["CVE-2012-1773", "CVE-2012-1767", "CVE-2012-3120", "CVE-2012-1738", "CVE-2011-4317", "CVE-2012-1747", "CVE-2012-1741", "CVE-2012-1766", "CVE-2012-1761", "CVE-2012-1744", "CVE-2012-1740", "CVE-2012-3117", "CVE-2001-0323", "CVE-2012-1742", "CVE-2011-4358", "CVE-2012-3135", "CVE-2012-3123", "CVE-2012-3126", "CVE-2012-3129", "CVE-2012-1731", "CVE-2012-3110", "CVE-2011-0419", "CVE-2012-1732", "CVE-2012-1729", "CVE-2012-0563", "CVE-2012-3186", "CVE-2012-1771", "CVE-2011-4885", "CVE-2012-3124", "CVE-2012-3118", "CVE-2012-3134", "CVE-2012-1730", "CVE-2012-3131", "CVE-2012-1745", "CVE-2012-1746", "CVE-2012-1689", "CVE-2012-1743", "CVE-2012-1687", "CVE-2011-2699", "CVE-2012-1733", "CVE-2012-3130", "CVE-2012-1770", "CVE-2012-3127", "CVE-2012-1737", "CVE-2012-1752", "CVE-2012-1757", "CVE-2012-1734", "CVE-2012-3111", "CVE-2012-3107", "CVE-2012-1769", "CVE-2012-1765", "CVE-2012-3119", "CVE-2012-1749", "CVE-2012-3121", "CVE-2012-1748", "CVE-2011-3368", "CVE-2012-3185", "CVE-2012-3128", "CVE-2012-1756", "CVE-2012-3106", "CVE-2012-1736", "CVE-2012-1758", "CVE-2011-3192", "CVE-2012-1727", "CVE-2012-3122", "CVE-2012-1760", "CVE-2012-1759", "CVE-2012-3108", "CVE-2012-3112", "CVE-2012-3115", "CVE-2012-0540", "CVE-2012-1764", "CVE-2012-3183", "CVE-2012-3114", "CVE-2012-1768", "CVE-2012-1739", "CVE-2012-3109", "CVE-2012-1772", "CVE-2012-3184", "CVE-2012-3113", "CVE-2012-1728", "CVE-2012-1753", "CVE-2012-1735", "CVE-2012-3125", "CVE-2012-1762", "CVE-2012-1715", "CVE-2012-1754", "CVE-2012-3116", "CVE-2011-3562", "CVE-2012-1750", "CVE-2008-4609"], "description": "Approx. 90 of diffent vulnerabilities in different applications.", "edition": 1, "modified": "2012-10-28T00:00:00", "published": "2012-10-28T00:00:00", "id": "SECURITYVULNS:VULN:12672", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:12672", "title": "Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities", "type": "securityvulns", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oracle": [{"lastseen": "2019-05-29T18:21:06", "bulletinFamily": "software", "cvelist": ["CVE-2012-1773", "CVE-2012-1767", "CVE-2012-3120", "CVE-2012-1738", "CVE-2011-4317", "CVE-2012-1747", "CVE-2012-1741", "CVE-2012-1766", "CVE-2012-1761", "CVE-2012-1744", "CVE-2012-1740", "CVE-2012-3117", "CVE-2001-0323", "CVE-2012-1742", "CVE-2012-1675", "CVE-2011-4358", "CVE-2012-3135", "CVE-2012-3123", "CVE-2012-3126", "CVE-2011-3607", "CVE-2012-3129", "CVE-2012-0031", "CVE-2012-1731", "CVE-2012-3110", "CVE-2011-0419", "CVE-2012-1732", "CVE-2012-1729", "CVE-2012-0563", "CVE-2012-1771", "CVE-2011-4885", "CVE-2012-3124", "CVE-2012-3118", "CVE-2012-3134", "CVE-2012-1730", "CVE-2012-3131", "CVE-2012-1745", "CVE-2012-1746", "CVE-2012-1689", "CVE-2012-1743", "CVE-2012-1687", "CVE-2011-2699", "CVE-2012-1733", "CVE-2012-3130", "CVE-2012-1770", "CVE-2012-3127", "CVE-2012-1737", "CVE-2012-1752", "CVE-2012-1720", "CVE-2012-1757", "CVE-2012-1734", "CVE-2012-0053", "CVE-2012-3111", "CVE-2012-1717", "CVE-2012-3107", "CVE-2012-0021", "CVE-2012-1713", "CVE-2012-1769", "CVE-2012-1765", "CVE-2012-3119", "CVE-2012-1749", "CVE-2012-3121", "CVE-2012-1748", "CVE-2011-3368", "CVE-2012-3128", "CVE-2012-1756", "CVE-2012-3106", "CVE-2012-1718", "CVE-2012-1736", "CVE-2012-1758", "CVE-2011-3192", "CVE-2012-1727", "CVE-2012-3122", "CVE-2012-1760", "CVE-2012-1759", "CVE-2012-3108", "CVE-2012-3112", "CVE-2012-3115", "CVE-2012-0540", "CVE-2012-1764", "CVE-2012-3114", "CVE-2012-1768", "CVE-2012-1739", "CVE-2012-2749", "CVE-2012-3109", "CVE-2012-1772", "CVE-2012-3113", "CVE-2012-1728", "CVE-2012-1724", "CVE-2012-1753", "CVE-2012-1735", "CVE-2012-3125", "CVE-2012-1762", "CVE-2012-1715", "CVE-2012-1754", "CVE-2012-3116", "CVE-2011-3562", "CVE-2012-1750", "CVE-2008-4609"], "description": "A Critical Patch Update (CPU) is a collection of patches for multiple security vulnerabilities. Critical Patch Update patches are usually cumulative but each advisory describes only the security fixes added since the previous Critical Patch Update advisory. Thus, prior Critical Patch Update advisories should be reviewed for information regarding earlier published security fixes. Please refer to:\n\n[Critical Patch Updates and Security Alerts](<http://www.oracle.com/technetwork/topics/security/alerts-086861.html>) for information about Oracle Security Advisories.\n\n**Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply CPU fixes as soon as possible.** This Critical Patch Update contains 87 new security fixes across the product families listed below.\n\nThis Critical Patch Update advisory is also available in an XML format that conforms to the Common Vulnerability Reporting Format (CVRF) version 1.1. More information about Oracle's use of CVRF is available at: <http://www.oracle.com/technetwork/topics/security/cpufaq-098434.html#CVRF>.\n", "modified": "2013-08-09T00:00:00", "published": "2012-07-17T00:00:00", "id": "ORACLE:CPUJUL2012-392727", "href": "", "type": "oracle", "title": "Oracle Critical Patch Update - July 2012", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}]}
