14 matches found
CVE-2013-5827
Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and 11.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2 allows remote attackers to affect integrity via unknown vecto...
SUSE CVE-2015-2646
Unspecified vulnerability in the Enterprise Manager for Oracle Database component in Oracle Enterprise Manager Grid Control EM Base Platform: 11.1.0.1; EM Plugin for DB: 12.1.0.5, 12.1.0.6, 12.1.0.7; EM DB Control: 11.1.0.7, 11.2.0.3, and 11.2.0.4 allows remote attackers to affect integrity via...
CVE-2020-2642
Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Connector Framework. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...
CVE-2015-4735
CVE-2015-4735 affects Oracle Enterprise Manager Grid Control (RAC Management) in EM Base Platform 11.1.0.1 and EM DB Control 11.2.0.3/11.2.0.4. The vulnerability allows remote, unauthenticated access via HTTP to read a subset of data, compromising confidentiality. Public sources in connected docu...
CVE-2015-2646
CVE-2015-2646 affects Oracle Enterprise Manager Grid Control Content Management. The vulnerability lies in the Content Management component and can impact integrity; affected products include EM Base Platform 11.1.0.1, EM Plugin for DB 12.1.0.5–12.1.0.7, and EM DB Control 11.1.0.7, 11.2.0.3, 11.2...
CVE-2014-6488
CVE-2014-6488 affects Oracle Enterprise Manager components (Grid Control EM Base Platform: 10.2.0.5, 11.1.0.1; EM DB Control: 11.1.0.7, 11.2.0.3, 11.2.0.4; EM Plugin for DB: 12.1.0.4–12.1.0.6) in the Content Management sub-component. The vulnerability is described as unspecified with remote authe...
CVE-2013-3762
CVE-2013-3762 corresponds to an unspecified vulnerability in Oracle Enterprise Manager Grid Control EM Base Platform and related components (EM Base Platform 10.2.0.5/11.1.0.1; EM DB Control 11.1.0.7/11.2.0.2/11.2.0.3; EM Plugin for DB 12.1.0.2/12.1.0.3/12.1.0.4) that allows remote attackers to a...
CVE-2013-5766
CVE-2013-5766 affects Oracle Enterprise Manager Grid Control/DB Control and the DB Plugin for 12.1.x. Affected components include EM Base Platform (10.2.0.5, 11.1.0.1), EM DB Control (11.1.0.7, 11.2.0.2, 11.2.0.3), and EM Plugin for DB (12.1.0.2–12.1.0.3). The description notes an unspecified rem...
CVE-2013-3791
Unspecified vulnerability in Enterprise Manager EM Base Platform 10.2.0.5 and EM DB Control 11.1.0.7 in Oracle Enterprise Manager Grid Control allows remote attackers to affect integrity via unknown vectors related to User Interface Framework...
CVE-2013-3791
Oracle Enterprise Manager Grid Control: CVE-2013-3791 corresponds to a cross‑site scripting vulnerability in the Oracle Enterprise Manager Grid Control/EM Base Platform 10.2.0.5 and EM DB Control 11.1.0.7, due to flaws in the UI Framework. Affected products include Enterprise Manager Grid Control...
CVE-2013-0372
Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control EM Base Platform 11.1.0.1 and 12.1.0.1; EM DB Control 11.1.0.7, 11.2.0.2, and 11.2.0.3; and EM Plugin for DB 12.1.0.2 allows remote attackers to affect integrity via unknown vecto...
CVE-2013-0354
CVE-2013-0354 affects Oracle Enterprise Manager Grid Control EM Base Platform 10.2.0.5 and EM DB Control 11.1.0.7, 11.2.0.2, 11.2.0.3. The TeamSHATTER advisory documents a HTTP Response Splitting vulnerability in policyViewSettings that is remotely exploitable; an attacker convincing a valid user...
CVE-2013-0355
The CVE-2013-0355 issue corresponds to a cross-site scripting vulnerability in Oracle Enterprise Manager components (EM Base Platform and EM DB Control) affecting versions 11.1.0.7, 11.2.0.2, and 11.2.0.3, related to the Distributed/Cross DB Features. The TeamSHATTER advisory documents a remote-e...
CVE-2013-0352
Oracle CVE-2013-0352 describes a Cross‑Site Scripting vulnerability in Oracle Enterprise Manager components, specifically the EM Database Control/XML Database Resources page via the cancelURL parameter. An attacker could remotely exploit this to steal session cookies and impersonate a legitimate ...