CVE-2011-2232

critical

Description

Unspecified vulnerability in the XML Developer Kit component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 11.1.0.7, and 11.2.0.1, and Oracle Fusion Middleware 10.1.3.5, allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

References

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

Details

Source: Mitre, NVD

Published: 2011-07-20

Updated: 2011-10-05

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 9.9

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Severity: Critical