CVSS: 6.8EPSS: 0%CPEs: 3EXPL: 0CVE-2011-0822
https://notcve.org/view.php?id=CVE-2011-0822
Unspecified vulnerability in the Streams, AQ & Replication Mgmt component in Oracle Database Server 10.1.0.5 and 10.2.0.3, and Oracle Enterprise Manager Grid Control 10.1.0.6, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en los componentes Streams, AQ & Replication Mgmt de Oracle Database Server v10.1.0.5 y v10.2.0.3, y Oracle Enterprise Manager Grid Control v10.1.0.6, permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://security.gentoo.org/glsa/glsa-201406-32.xml http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html http://www.us-cert.gov/cas/techalerts/TA11-201A.html •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2011-0787
https://notcve.org/view.php?id=CVE-2011-0787
Unspecified vulnerability in the Application Service Level Management component in Oracle Database Server 11.1.0.7 and Enterprise Manager Grid Control allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Service Level Agreements. Vulnerabilidad sin especificar en el componente "Application Service Level Management" del servidor de bases de datos Oracle 11.1.0.7 y Enterprise Manager Grid Control permite a usuarios autenticados remotos vulnerar la confidencialidad e integridad a través de vectores desconocidos relacionados con los acuerdos de nivel de servicio. • http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html •
CVSS: 10.0EPSS: 97%CPEs: 3EXPL: 2CVE-2010-3600 – Oracle Database and Enterprise Manager Grid Control Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-3600
Unspecified vulnerability in the Client System Analyzer component in Oracle Database Server 11.1.0.7 and 11.2.0.1 and Enterprise Manager Grid Control 10.2.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that this issue involves an exposed JSP script that accepts XML uploads in conjunction with NULL bytes in an unspecified parameter that allow execution of arbitrary code. Una vulnerabilidad no especificada en el componente Client System Analyzer en Database Server versiones 11.1.0.7 y 11.2.0.1 y Enterprise Manager Grid Control versión 10.2.0.5, de Oracle, permite a los atacantes remotos afectar la confidencialidad, integridad y disponibilidad por medio de vectores desconocidos. NOTA: la información anterior fue obtenida de la CPU de enero de 2011. • https://www.exploit-db.com/exploits/22714 https://github.com/LAITRUNGMINHDUC/CVE-2010-3600-PythonHackOracle11gR2 http://secunia.com/advisories/42895 http://secunia.com/advisories/42921 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html http://www.securityfocus.com/bid/45883 http://www.securitytracker.com/id?1024972 http://www.vupen.com/english/advisories/2011/0139 http://www.vupen.com/english/advisories/2011/0140 http://www.zerodayinitiative.com/advisories/ZDI-11-018&# •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2010-2390
https://notcve.org/view.php?id=CVE-2010-2390
Unspecified vulnerability in the Database Control component in EM Console in Oracle Database Server 10.1.0.5 and 10.2.0.3, Oracle Fusion Middleware 10.1.2.3 and 10.1.4.3, and Enterprise Manager Grid Control allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Database Control en EM Console en Oracle Database Server v10.1.0.5 y v10.2.0.3, Oracle Fusion Middleware v10.1.2.3 y v10.1.4.3 y Enterprise Manager Grid Control permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a través de de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html http://www.us-cert.gov/cas/techalerts/TA10-287A.html •
CVSS: 10.0EPSS: 1%CPEs: 46EXPL: 0CVE-2006-1884
https://notcve.org/view.php?id=CVE-2006-1884
Unspecified vulnerability in the Oracle Thesaurus Management System component in Oracle E-Business Suite and OPA 4.5.2 Applications has unknown impact and attack vectors, aka Vuln# OPA01. • http://secunia.com/advisories/19712 http://secunia.com/advisories/19859 http://securitytracker.com/id?1015961 http://www.oracle.com/technetwork/topics/security/cpuapr2006-090826.html http://www.securityfocus.com/archive/1/432267/100/0/threaded http://www.securityfocus.com/bid/17590 http://www.vupen.com/english/advisories/2006/1397 http://www.vupen.com/english/advisories/2006/1571 https://exchange.xforce.ibmcloud.com/vulnerabilities/26058 •