CVE-2011-2248

Published: Jul 20, 2011Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in the SQL Performance Advisories/UIs component in Oracle Database Server 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality, integrity, and availability, related to SQL Details UI & Explain Plan.

Affected (6)

Products: Oracle: Database Server, Enterprise Manager Grid Control

Oracle

2 products

Database Server

Enterprise Manager Grid Control

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Oracle Database Server	Version 11.1.0.7
Oracle Database Server	Version 11.2.0.1
Oracle Database Server	Version 11.2.0.2

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Oracle Enterprise Manager Grid Control	Version 10.1.0.6
Oracle Enterprise Manager Grid Control	Version 10.2.0.5
Oracle Enterprise Manager Grid Control	Version 11.1.0.1

References (4)

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

Source: secalert_us@oracle.com

PatchVendor Advisory

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

Source: secalert_us@oracle.com

US Government Resource

http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.