cvelistv5 - CVE-2011-0837

CVE-2011-0837 (GCVE-0-2011-0837)

Vulnerability from cvelistv5 – Published: 2011-04-20 10:00 – Updated: 2024-09-16 19:30

Summary

Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security.

Severity ?

No CVSS data available.

CWE

Assigner

oracle

References

URL

Tags

http://www.oracle.com/technetwork/topics/security…

x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T22:05:54.607Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2011-04-20T10:00:00Z",
        "orgId": "43595867-4340-4103-b7a2-9a5208d29a85",
        "shortName": "oracle"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2011-0837",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85",
    "assignerShortName": "oracle",
    "cveId": "CVE-2011-0837",
    "datePublished": "2011-04-20T10:00:00Z",
    "dateReserved": "2011-02-04T00:00:00Z",
    "dateUpdated": "2024-09-16T19:30:57.196Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:supply_chain_products_suite:9.3.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"21530574-52D8-4201-8A43-D18C54F48CDE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:supply_chain_products_suite:9.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF41E8FD-BDD6-4BB1-B505-F15D1535D9F9\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad sin especificar en el componente Agile Technology Platform de Oracle Supply Chain Products Suite 9.3.0.2 y 9.3.1 permite a atacantes remotos vulnerar la confidencialidad a trav\\u00e9s de vectores relacionados con la seguridad.\"}]",
      "id": "CVE-2011-0837",
      "lastModified": "2024-11-21T01:24:58.657",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:N/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2011-04-20T10:55:01.747",
      "references": "[{\"url\": \"http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html\", \"source\": \"secalert_us@oracle.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "secalert_us@oracle.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-0837\",\"sourceIdentifier\":\"secalert_us@oracle.com\",\"published\":\"2011-04-20T10:55:01.747\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad sin especificar en el componente Agile Technology Platform de Oracle Supply Chain Products Suite 9.3.0.2 y 9.3.1 permite a atacantes remotos vulnerar la confidencialidad a trav\u00e9s de vectores relacionados con la seguridad.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:N/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:supply_chain_products_suite:9.3.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"21530574-52D8-4201-8A43-D18C54F48CDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:supply_chain_products_suite:9.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF41E8FD-BDD6-4BB1-B505-F15D1535D9F9\"}]}]}],\"references\":[{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html\",\"source\":\"secalert_us@oracle.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
  }
}

CERTA-2011-AVI-238

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités présentes dans les produits Oracle ont été corrigées.

Description

De multiples vulnérabilités présentes dans les produits Oracle ont été corrigées. Les détails de ces vulnérabilités n'ont pas été divulgués mais l'une d'entre elles à un niveau de criticité maximal dans l'échelle de l'éditeur (10).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	N/A	Oracle Fusion Middleware, 11g Release 1, versions 11.1.1.2.0, 11.1.1.3.0, 11.1.1.4.0 ;
Oracle	N/A	Oracle Siebel CRM Core, versions 7.8.2, 8.0.0, 8.1.1 ;
Oracle	N/A	Oracle Application Server 10g Release 3, version 10.1.3.5.0 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise Portal, versions 8.8, 8.9, 9.0, 9.1 ;
Oracle	N/A	Oracle Database 11g Release 2, version 11.2.0.2 ;
Oracle	N/A	Oracle Application Server 10g Release 2, version 10.1.2.3.0 ;
Oracle	N/A	Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise HRMS, versions 9.0, 9.1 ;
Oracle	N/A	Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;
Oracle	Weblogic	Oracle WebLogic Server, versions 8.1.6, 9.2.3, 9.2.4, 10.0.2, 11gR1 (10.3.2, 10.3.3, 10.3.4) ;
Oracle	N/A	Oracle E-Business Suite Release 11i, version 11.5.10.2 ;
Oracle	N/A	Oracle JRockit versions, R27.6.8 et antérieures (JDK/JRE 1.4.2, 5, 6), R28.1.1 et antérieures (JDK/JRE 5, 6) ;
Oracle	N/A	Oracle Agile Technology platform, versions 9.3.0.2, 9.3.1 ;
Oracle	N/A	Oracle Audit Vault 10g Release 2, version 10.2.3.2 ;
Oracle	N/A	Oracle Database 10g Release 1, version 10.1.0.5 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise CRM, versions 8.9 ;
Oracle	N/A	Oracle Identity Management 10g, version 10.1.4.0.1, 10.1.4.3 ;
Oracle	N/A	Oracle JD Edwards OneWorld Tools, versions 24.1.x ;
Oracle	N/A	Oracle InForm, versions 4.5, 4.6, 5.0.
Oracle	N/A	Oracle JD Edwards EnterpriseOne Tools, versions 8.98.x ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise ELS, versions 9.0, 9.1 ;
Oracle	N/A	Oracle Database 11g Release 1, version 11.1.0.7 ;
Oracle	N/A	Oracle Outside In Technology, version 8.3.2.0, 8.3.5.0 ;

References

Title

Publication Time

Tags

Bulletin de sécurité Oracle d'avril 2011

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Oracle Fusion Middleware, 11g Release 1, versions 11.1.1.2.0, 11.1.1.3.0, 11.1.1.4.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Siebel CRM Core, versions 7.8.2, 8.0.0, 8.1.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Application Server 10g Release 3, version 10.1.3.5.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise Portal, versions 8.8, 8.9, 9.0, 9.1 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 11g Release 2, version 11.2.0.2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Application Server 10g Release 2, version 10.1.2.3.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise HRMS, versions 9.0, 9.1 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle WebLogic Server, versions 8.1.6, 9.2.3, 9.2.4, 10.0.2, 11gR1 (10.3.2, 10.3.3, 10.3.4) ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle E-Business Suite Release 11i, version 11.5.10.2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle JRockit versions, R27.6.8 et ant\u00e9rieures (JDK/JRE 1.4.2, 5, 6), R28.1.1 et ant\u00e9rieures (JDK/JRE 5, 6) ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Agile Technology platform, versions 9.3.0.2, 9.3.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Audit Vault 10g Release 2, version 10.2.3.2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 10g Release 1, version 10.1.0.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise CRM, versions 8.9 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Identity Management 10g, version 10.1.4.0.1, 10.1.4.3 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle JD Edwards OneWorld Tools, versions 24.1.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle InForm, versions 4.5, 4.6, 5.0.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle JD Edwards EnterpriseOne Tools, versions 8.98.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise ELS, versions 9.0, 9.1 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 11g Release 1, version 11.1.0.7 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Outside In Technology, version 8.3.2.0, 8.3.5.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans les produits Oracle ont \u00e9t\u00e9\ncorrig\u00e9es. Les d\u00e9tails de ces vuln\u00e9rabilit\u00e9s n\u0027ont pas \u00e9t\u00e9 divulgu\u00e9s\nmais l\u0027une d\u0027entre elles \u00e0 un niveau de criticit\u00e9 maximal dans l\u0027\u00e9chelle\nde l\u0027\u00e9diteur (10).\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-0810",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0810"
    },
    {
      "name": "CVE-2011-0828",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0828"
    },
    {
      "name": "CVE-2011-0857",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0857"
    },
    {
      "name": "CVE-2011-0859",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0859"
    },
    {
      "name": "CVE-2011-0805",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0805"
    },
    {
      "name": "CVE-2011-0851",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0851"
    },
    {
      "name": "CVE-2011-0824",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0824"
    },
    {
      "name": "CVE-2010-4452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-4452"
    },
    {
      "name": "CVE-2011-0854",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0854"
    },
    {
      "name": "CVE-2011-0819",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0819"
    },
    {
      "name": "CVE-2011-0803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0803"
    },
    {
      "name": "CVE-2011-0853",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0853"
    },
    {
      "name": "CVE-2011-0861",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0861"
    },
    {
      "name": "CVE-2011-0796",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0796"
    },
    {
      "name": "CVE-2011-0818",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0818"
    },
    {
      "name": "CVE-2011-0826",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0826"
    },
    {
      "name": "CVE-2011-0833",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0833"
    },
    {
      "name": "CVE-2011-0787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0787"
    },
    {
      "name": "CVE-2011-0804",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0804"
    },
    {
      "name": "CVE-2011-0856",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0856"
    },
    {
      "name": "CVE-2011-0850",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0850"
    },
    {
      "name": "CVE-2011-0855",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0855"
    },
    {
      "name": "CVE-2011-0827",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0827"
    },
    {
      "name": "CVE-2011-0795",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0795"
    },
    {
      "name": "CVE-2011-0834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0834"
    },
    {
      "name": "CVE-2011-0785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0785"
    },
    {
      "name": "CVE-2009-3555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-3555"
    },
    {
      "name": "CVE-2011-0808",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0808"
    },
    {
      "name": "CVE-2011-0843",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0843"
    },
    {
      "name": "CVE-2011-0792",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0792"
    },
    {
      "name": "CVE-2011-0791",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0791"
    },
    {
      "name": "CVE-2011-0836",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0836"
    },
    {
      "name": "CVE-2011-0797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0797"
    },
    {
      "name": "CVE-2011-0860",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0860"
    },
    {
      "name": "CVE-2011-0809",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0809"
    },
    {
      "name": "CVE-2011-0806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0806"
    },
    {
      "name": "CVE-2011-0823",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0823"
    },
    {
      "name": "CVE-2011-0798",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0798"
    },
    {
      "name": "CVE-2011-0858",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0858"
    },
    {
      "name": "CVE-2011-0825",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0825"
    },
    {
      "name": "CVE-2011-0840",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0840"
    },
    {
      "name": "CVE-2011-0799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0799"
    },
    {
      "name": "CVE-2011-0794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0794"
    },
    {
      "name": "CVE-2011-0837",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0837"
    },
    {
      "name": "CVE-2011-0789",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0789"
    },
    {
      "name": "CVE-2011-0793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0793"
    }
  ],
  "links": [],
  "reference": "CERTA-2011-AVI-238",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-04-20T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans les produits Oracle ont \u00e9t\u00e9\ncorrig\u00e9es.\n",
  "title": "Multiples Vuln\u00e9rabilit\u00e9s dans les produits Oracle",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Oracle d\u0027avril 2011",
      "url": "http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2011-301950.html"
    }
  ]
}

CERTA-2011-AVI-238

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités présentes dans les produits Oracle ont été corrigées.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Oracle	N/A	Oracle Fusion Middleware, 11g Release 1, versions 11.1.1.2.0, 11.1.1.3.0, 11.1.1.4.0 ;
Oracle	N/A	Oracle Siebel CRM Core, versions 7.8.2, 8.0.0, 8.1.1 ;
Oracle	N/A	Oracle Application Server 10g Release 3, version 10.1.3.5.0 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise Portal, versions 8.8, 8.9, 9.0, 9.1 ;
Oracle	N/A	Oracle Database 11g Release 2, version 11.2.0.2 ;
Oracle	N/A	Oracle Application Server 10g Release 2, version 10.1.2.3.0 ;
Oracle	N/A	Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise HRMS, versions 9.0, 9.1 ;
Oracle	N/A	Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;
Oracle	Weblogic	Oracle WebLogic Server, versions 8.1.6, 9.2.3, 9.2.4, 10.0.2, 11gR1 (10.3.2, 10.3.3, 10.3.4) ;
Oracle	N/A	Oracle E-Business Suite Release 11i, version 11.5.10.2 ;
Oracle	N/A	Oracle JRockit versions, R27.6.8 et antérieures (JDK/JRE 1.4.2, 5, 6), R28.1.1 et antérieures (JDK/JRE 5, 6) ;
Oracle	N/A	Oracle Agile Technology platform, versions 9.3.0.2, 9.3.1 ;
Oracle	N/A	Oracle Audit Vault 10g Release 2, version 10.2.3.2 ;
Oracle	N/A	Oracle Database 10g Release 1, version 10.1.0.5 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise CRM, versions 8.9 ;
Oracle	N/A	Oracle Identity Management 10g, version 10.1.4.0.1, 10.1.4.3 ;
Oracle	N/A	Oracle JD Edwards OneWorld Tools, versions 24.1.x ;
Oracle	N/A	Oracle InForm, versions 4.5, 4.6, 5.0.
Oracle	N/A	Oracle JD Edwards EnterpriseOne Tools, versions 8.98.x ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ;
Oracle	PeopleSoft	Oracle PeopleSoft Enterprise ELS, versions 9.0, 9.1 ;
Oracle	N/A	Oracle Database 11g Release 1, version 11.1.0.7 ;
Oracle	N/A	Oracle Outside In Technology, version 8.3.2.0, 8.3.5.0 ;

References

Title

Publication Time

Tags

Bulletin de sécurité Oracle d'avril 2011

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Oracle Fusion Middleware, 11g Release 1, versions 11.1.1.2.0, 11.1.1.3.0, 11.1.1.4.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Siebel CRM Core, versions 7.8.2, 8.0.0, 8.1.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Application Server 10g Release 3, version 10.1.3.5.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise Portal, versions 8.8, 8.9, 9.0, 9.1 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 11g Release 2, version 11.2.0.2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Application Server 10g Release 2, version 10.1.2.3.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle E-Business Suite Release 12, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise HRMS, versions 9.0, 9.1 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle WebLogic Server, versions 8.1.6, 9.2.3, 9.2.4, 10.0.2, 11gR1 (10.3.2, 10.3.3, 10.3.4) ;",
      "product": {
        "name": "Weblogic",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle E-Business Suite Release 11i, version 11.5.10.2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle JRockit versions, R27.6.8 et ant\u00e9rieures (JDK/JRE 1.4.2, 5, 6), R28.1.1 et ant\u00e9rieures (JDK/JRE 5, 6) ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Agile Technology platform, versions 9.3.0.2, 9.3.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Audit Vault 10g Release 2, version 10.2.3.2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 10g Release 1, version 10.1.0.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise CRM, versions 8.9 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Identity Management 10g, version 10.1.4.0.1, 10.1.4.3 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle JD Edwards OneWorld Tools, versions 24.1.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle InForm, versions 4.5, 4.6, 5.0.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle JD Edwards EnterpriseOne Tools, versions 8.98.x ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise PeopleTools, versions 8.49, 8.50, 8.51 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle PeopleSoft Enterprise ELS, versions 9.0, 9.1 ;",
      "product": {
        "name": "PeopleSoft",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Database 11g Release 1, version 11.1.0.7 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    },
    {
      "description": "Oracle Outside In Technology, version 8.3.2.0, 8.3.5.0 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Oracle",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans les produits Oracle ont \u00e9t\u00e9\ncorrig\u00e9es. Les d\u00e9tails de ces vuln\u00e9rabilit\u00e9s n\u0027ont pas \u00e9t\u00e9 divulgu\u00e9s\nmais l\u0027une d\u0027entre elles \u00e0 un niveau de criticit\u00e9 maximal dans l\u0027\u00e9chelle\nde l\u0027\u00e9diteur (10).\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-0810",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0810"
    },
    {
      "name": "CVE-2011-0828",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0828"
    },
    {
      "name": "CVE-2011-0857",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0857"
    },
    {
      "name": "CVE-2011-0859",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0859"
    },
    {
      "name": "CVE-2011-0805",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0805"
    },
    {
      "name": "CVE-2011-0851",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0851"
    },
    {
      "name": "CVE-2011-0824",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0824"
    },
    {
      "name": "CVE-2010-4452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-4452"
    },
    {
      "name": "CVE-2011-0854",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0854"
    },
    {
      "name": "CVE-2011-0819",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0819"
    },
    {
      "name": "CVE-2011-0803",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0803"
    },
    {
      "name": "CVE-2011-0853",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0853"
    },
    {
      "name": "CVE-2011-0861",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0861"
    },
    {
      "name": "CVE-2011-0796",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0796"
    },
    {
      "name": "CVE-2011-0818",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0818"
    },
    {
      "name": "CVE-2011-0826",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0826"
    },
    {
      "name": "CVE-2011-0833",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0833"
    },
    {
      "name": "CVE-2011-0787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0787"
    },
    {
      "name": "CVE-2011-0804",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0804"
    },
    {
      "name": "CVE-2011-0856",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0856"
    },
    {
      "name": "CVE-2011-0850",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0850"
    },
    {
      "name": "CVE-2011-0855",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0855"
    },
    {
      "name": "CVE-2011-0827",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0827"
    },
    {
      "name": "CVE-2011-0795",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0795"
    },
    {
      "name": "CVE-2011-0834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0834"
    },
    {
      "name": "CVE-2011-0785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0785"
    },
    {
      "name": "CVE-2009-3555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-3555"
    },
    {
      "name": "CVE-2011-0808",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0808"
    },
    {
      "name": "CVE-2011-0843",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0843"
    },
    {
      "name": "CVE-2011-0792",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0792"
    },
    {
      "name": "CVE-2011-0791",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0791"
    },
    {
      "name": "CVE-2011-0836",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0836"
    },
    {
      "name": "CVE-2011-0797",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0797"
    },
    {
      "name": "CVE-2011-0860",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0860"
    },
    {
      "name": "CVE-2011-0809",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0809"
    },
    {
      "name": "CVE-2011-0806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0806"
    },
    {
      "name": "CVE-2011-0823",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0823"
    },
    {
      "name": "CVE-2011-0798",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0798"
    },
    {
      "name": "CVE-2011-0858",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0858"
    },
    {
      "name": "CVE-2011-0825",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0825"
    },
    {
      "name": "CVE-2011-0840",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0840"
    },
    {
      "name": "CVE-2011-0799",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0799"
    },
    {
      "name": "CVE-2011-0794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0794"
    },
    {
      "name": "CVE-2011-0837",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0837"
    },
    {
      "name": "CVE-2011-0789",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0789"
    },
    {
      "name": "CVE-2011-0793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0793"
    }
  ],
  "links": [],
  "reference": "CERTA-2011-AVI-238",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-04-20T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans les produits Oracle ont \u00e9t\u00e9\ncorrig\u00e9es.\n",
  "title": "Multiples Vuln\u00e9rabilit\u00e9s dans les produits Oracle",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Oracle d\u0027avril 2011",
      "url": "http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpuapr2011-301950.html"
    }
  ]
}

FKIE_CVE-2011-0837

Vulnerability from fkie_nvd - Published: 2011-04-20 10:55 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

	URL	Tags
	secalert_us@oracle.com	http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html	Patch, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html	Patch, Vendor Advisory

Impacted products

	Vendor	Product	Version
	oracle	supply_chain_products_suite	9.3.0.2
	oracle	supply_chain_products_suite	9.3.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:9.3.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "21530574-52D8-4201-8A43-D18C54F48CDE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:9.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF41E8FD-BDD6-4BB1-B505-F15D1535D9F9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad sin especificar en el componente Agile Technology Platform de Oracle Supply Chain Products Suite 9.3.0.2 y 9.3.1 permite a atacantes remotos vulnerar la confidencialidad a trav\u00e9s de vectores relacionados con la seguridad."
    }
  ],
  "id": "CVE-2011-0837",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2011-04-20T10:55:01.747",
  "references": [
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
    }
  ],
  "sourceIdentifier": "secalert_us@oracle.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-MC42-V4XR-9VXM

Vulnerability from github – Published: 2022-05-17 05:26 – Updated: 2022-05-17 05:26

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-0837"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-04-20T10:55:00Z",
    "severity": "MODERATE"
  },
  "details": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security.",
  "id": "GHSA-mc42-v4xr-9vxm",
  "modified": "2022-05-17T05:26:52Z",
  "published": "2022-05-17T05:26:52Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-0837"
    },
    {
      "type": "WEB",
      "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2011-0837

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2011-0837

Aliases

CVE-2011-0837

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2011-0837",
    "description": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security.",
    "id": "GSD-2011-0837"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2011-0837"
      ],
      "details": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security.",
      "id": "GSD-2011-0837",
      "modified": "2023-12-13T01:19:04.317711Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert_us@oracle.com",
        "ID": "CVE-2011-0837",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html",
            "refsource": "CONFIRM",
            "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:oracle:supply_chain_products_suite:9.3.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:oracle:supply_chain_products_suite:9.3.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert_us@oracle.com",
          "ID": "CVE-2011-0837"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in the Agile Technology Platform component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote attackers to affect confidentiality via unknown vectors related to Security."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2012-08-03T04:00Z",
      "publishedDate": "2011-04-20T10:55Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2011-0837 (GCVE-0-2011-0837)

CERTA-2011-AVI-238

Description

Solution

CERTA-2011-AVI-238

Description

Solution

FKIE_CVE-2011-0837

GHSA-MC42-V4XR-9VXM

GSD-2011-0837

Tags

Sightings

Nomenclature