Vulnerability Details : CVE-2012-1740
Unspecified vulnerability in the Oracle Application Express Listener component in Oracle Application Express Listener 1.1-ea, 1.1.1, 1.1.2, and 1.1.3 allows remote attackers to affect confidentiality via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2012-1740
Probability of exploitation activity in the next 30 days: 0.44%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 72 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2012-1740
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:C/I:N/A:N |
10.0
|
6.9
|
NIST |
References for CVE-2012-1740
-
http://www.securitytracker.com/id?1027270
Oracle Application Express Listener Discloses Data to Remote Users - SecurityTracker
-
http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html
Oracle Critical Patch Update - July 2012Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
mandriva.com
-
http://www.securityfocus.com/bid/54498
Oracle Application Express CVE-2012-1740 Remote Security Vulnerability
Products affected by CVE-2012-1740
- cpe:2.3:a:oracle:application_express_listener:1.1-ea:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_express_listener:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_express_listener:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:application_express_listener:1.1.3:*:*:*:*:*:*:*