CVE-2011-2244 : Unspecified vulnerability in the Security Framework component in Oracle Database

Unspecified vulnerability in the Security Framework component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality and integrity via unknown vectors related to Authentication.

Published 2011-07-20 23:55:01

Updated 2025-04-11 00:51:22

Source Oracle

View at NVD, CVE.org

Products affected by CVE-2011-2244

Oracle » Database Server » Version: 10.1.0.5
cpe:2.3:a:oracle:database_server:10.1.0.5:*:*:*:*:*:*:*
Matching versions
Oracle » Database Server » Version: 10.2.0.5
cpe:2.3:a:oracle:database_server:10.2.0.5:*:*:*:*:*:*:*
Matching versions
Oracle » Database Server » Version: 10.2.0.4
cpe:2.3:a:oracle:database_server:10.2.0.4:*:*:*:*:*:*:*
Matching versions
Oracle » Database Server » Version: 10.2.0.3
cpe:2.3:a:oracle:database_server:10.2.0.3:*:*:*:*:*:*:*
Matching versions
Oracle » Database Server » Version: 11.1.0.7
cpe:2.3:a:oracle:database_server:11.1.0.7:*:*:*:*:*:*:*
Matching versions
Oracle » Database Server » Version: 11.2.0.1
cpe:2.3:a:oracle:database_server:11.2.0.1:*:*:*:*:*:*:*
Matching versions
Oracle » Database Server » Version: 11.2.0.2
cpe:2.3:a:oracle:database_server:11.2.0.2:*:*:*:*:*:*:*
Matching versions
Oracle » Enterprise Manager Grid Control » Version: 10.1.0.6
cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.6:*:*:*:*:*:*:*
Matching versions
Oracle » Enterprise Manager Grid Control » Version: 10.2.0.5
cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:*:*:*:*:*:*:*
Matching versions
Oracle » Enterprise Manager Grid Control » Version: 11.1.0.1
cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2011-2244

Top countries where our scanners detected CVE-2011-2244

Top open port discovered on systems with this issue 1521

IPs affected by CVE-2011-2244 49,598

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2011-2244!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2011-2244

EPSS FAQ

0.43%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 60 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2011-2244

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.4	MEDIUM	AV:N/AC:L/Au:N/C:P/I:P/A:N	10.0	4.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: None

References for CVE-2011-2244

http://www.us-cert.gov/cas/techalerts/TA11-201A.html

Oracle Updates for Multiple Vulnerabilities | CISA
US Government Resource

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

Oracle Critical Patch Update - July 2011
Patch;Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2011-2244

Products affected by CVE-2011-2244

Threat overview for CVE-2011-2244

Exploit prediction scoring system (EPSS) score for CVE-2011-2244

CVSS scores for CVE-2011-2244

References for CVE-2011-2244