High severity7.5NVD Advisory· Published Apr 24, 2017· Updated Jun 17, 2026
CVE-2017-3518
CVE-2017-3518
Description
Vulnerability in the Enterprise Manager Base Platform component of Oracle Enterprise Manager Grid Control (subcomponent: Discovery Framework). Supported versions that are affected are 12.1.0, 13.1.0 and 13.2.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Enterprise Manager Base Platform. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Enterprise Manager Base Platform. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).
Affected products
4cpe:2.3:a:oracle:enterprise_manager_base_platform:12.1.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:enterprise_manager_base_platform:12.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:enterprise_manager_base_platform:13.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.0:*:*:*:*:*:*:*
- (no CPE)range: 12.1.0
Patches
Vulnerability mechanics
References
3- www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/97720nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1038297nvd
News mentions
0No linked articles in our index yet.