Vulnerabilities > CVE-2012-3117 - Unspecified vulnerability in Oracle Supply Chain products Suite

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

oracle

NVD

Published: 2012-07-17

Updated: 2017-12-22

Summary

Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 5.5.06, 6.0, 6.1, and 6.2 allows remote authenticated users to affect confidentiality via unknown vectors related to HTTP.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Supply Chain Products Suite 5.5.06 Oracle Supply Chain Products Suite 6.0.0 Oracle Supply Chain Products Suite 6.1.0 Oracle Supply Chain Products Suite 6.2.0	4

References

http://osvdb.org/83959
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
http://www.securityfocus.com/bid/54568
http://www.securitytracker.com/id?1027268
https://exchange.xforce.ibmcloud.com/vulnerabilities/77022