CVE-2012-3185 — MEDIUM (4.9)

Vulnerability Description

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Advanced UI, a different vulnerability than CVE-2012-3183 and CVE-2012-3186.

CVSS Score

4.9

MEDIUM

AV:N/AC:M/Au:S/C:P/I:P/A:N

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Oracle	Fusion Middleware	6.1

References

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150Broken Link
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.htmlPatchVendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150Broken Link
http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.htmlPatchVendor Advisory

FAQ

What is CVE-2012-3185?

CVE-2012-3185 is a vulnerability with a CVSS score of 4.9 (MEDIUM). Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows remote authenticated use...

How severe is CVE-2012-3185?

CVE-2012-3185 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-3185?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Fusion Middleware.