CVE-2006-1037

Published Mar 7, 2006

Last updated 3 months ago

CVSS info 7.5

Overview

Description: SQL injection vulnerability in the Oracle Diagnostics module 2.2 and earlier allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:oracle:diagnostics:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E4B4B32-9858-47BF-BB73-C5072A1A9022"
          },
          {
            "criteria": "cpe:2.3:a:oracle:diagnostics:2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E5634A3-747D-4478-9DCA-6E24F5A44468"
          },
          {
            "criteria": "cpe:2.3:a:oracle:diagnostics:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8024E967-8949-4367-8297-E65454CFDDE5"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F57A5AE0-90B5-410E-8878-BD514C3B7946"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA7EAC35-E890-444A-B070-C91382F2E242"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69568B66-122B-4946-B630-2960DAA1885E"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB6E1838-B4DA-4F62-8713-9E8D7E79CDF5"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C3E4A5C-8D0F-4105-8618-26586BEDE84B"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D07FEA4F-B1C7-4250-81FD-AC1289769348"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "78408427-3FFB-45C4-82EF-C8D636B3A718"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C9B1BE09-4A96-41A3-AA1D-74533F396998"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.10.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F6AEEED-E84B-481C-8A47-91FA4835D6F7"
          },
          {
            "criteria": "cpe:2.3:a:oracle:e-business_suite:11.5.10.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "80B61990-9CC2-4215-9879-AC817F4E6767"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References