Information disclosure in Oracle Enterprise_manager_database_control

CVE-2015-4735

Unspecified vulnerability in the Enterprise Manager for Oracle Database component in Oracle Enterprise Manager Grid Control EM Base Platform 11.1.0.1, and EM DB Control 11.2.0.3 and 11.2.0.4, allows remote attackers to affect confidentiali…

Vulnerability class: Information Disclosure

EPSS: 0.005 (64.3th percentile) — read the EPSS interpretation.

Affected products

Oracle Enterprise_manager_database_control — versions 11.2.0.3, 11.2.0.4
Oracle Enterprise_manager_grid_control — versions 11.1.0.1
N/a — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

secalert_us@oracle.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
1032918 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
SUSE-SU-2015:1353 (vendor-advisory, Third Party Advisory, x_refsource_SUSE)