Vulnerabilities > CVE-2015-0476 - Remote Security vulnerability in Oracle SQL Trace Analyzer 12.1.10

CVSS 5.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

oracle

NVD

Published: 2015-04-16

Updated: 2015-04-17

Summary

Unspecified vulnerability in the SQL Trace Analyzer component in Oracle Support Tools before 12.1.11 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Per Oracle: Please refer to My Oracle Support Note 215187.1 for instructions on upgrading to SQLT version 12.1.11. (http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html)

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle SQL Trace Analyzer 12.1.10	1

References

http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html