CVE-2012-3186

Oracle WebCenter Sites - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 6.1, 6.2, 6.3.x, 7, 7.0.1, 7.0.2, 7.0.3, 7.5, 7.6.1, 7.6.2, and 11.1.1.6.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Advanced UI, a different vulnerability than CVE-2012-3183 and CVE-2012-3185.

Exploits (1)

exploitdb WRITEUP

by SEC Consult · textwebappsmultiple

https://www.exploit-db.com/exploits/22041

View Code ZIP pw:eip

References (2)

Core 2

Core References

Patch, Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html

Broken Link vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

Scores

EPSS 0.0217

EPSS Percentile 84.4%

Details

Status published

Products (11)

oracle/fusion_middleware 7.0

oracle/fusion_middleware 7.0.1

oracle/fusion_middleware 7.0.2

oracle/fusion_middleware 7.0.3

oracle/fusion_middleware 7.5

oracle/fusion_middleware 7.6.1

oracle/fusion_middleware 7.6.2

oracle/fusion_middleware 6.1

oracle/fusion_middleware 6.2

oracle/fusion_middleware 6.3

... and 1 more

Published Oct 17, 2012

Tracked Since Feb 18, 2026