CVE-2013-5795

Oracle Demantra Demand Management - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2013-5795. PoCs published by Portcullis, Oliver Gruskovnjak, including Metasploit module auxiliary/scanner/http/oracle_demantra_database_credentials_leak.

AI-analyzed exploit summary The exploit describes a method to retrieve Oracle Demantra database credentials by calculating a static UAK key and sending a crafted request to the ServerDetailsServlet endpoint. The writeup includes a Java-based key generator and demonstrates how the encrypted credentials can be decrypted.

Description

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, 12.2.2, and 12.2.3 allows remote attackers to affect confidentiality via unknown vectors related to DM Others.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Portcullis · textwebappswindows
https://www.exploit-db.com/exploits/31995

The exploit describes a method to retrieve Oracle Demantra database credentials by calculating a static UAK key and sending a crafted request to the ServerDetailsServlet endpoint. The writeup includes a Java-based key generator and demonstrates how the encrypted credentials can be decrypted.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Oracle Demantra
No auth needed
Prerequisites: Access to the target URL · Java environment to generate UAK key
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC
by Oliver Gruskovnjak · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/oracle_demantra_database_credentials_leak.rb

This Metasploit module exploits an authentication bypass and database credentials leak in Oracle Demantra 12.2.1. It sends a crafted GET request to retrieve encoded credentials, which are then decoded using a simple XOR operation.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Oracle Demantra 12.2.1
No auth needed
Prerequisites: Network access to the target · Oracle Demantra 12.2.1 with vulnerable endpoint exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/102096
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1029620
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/64846
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/56474
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/64758

Scores

EPSS 0.5949
EPSS Percentile 99.0%

Details

Status published
Products (6)
oracle/supply_chain_products_suite 7.2.0.3
oracle/supply_chain_products_suite_sql-server 7.3.0
oracle/supply_chain_products_suite_sql-server 7.3.1
oracle/supply_chain_products_suite_sql-server 12.2.1
oracle/supply_chain_products_suite_sql-server 12.2.2
oracle/supply_chain_products_suite_sql-server 12.2.3
Published Jan 15, 2014
Tracked Since Feb 18, 2026