Vulnerability Database

289,689

Total vulnerabilities in the database

CVE-2017-3311

Vulnerability in the Application Testing Suite component of Oracle Enterprise Manager Grid Control (subcomponent: Test Manager for Web Apps). Supported versions that are affected are 12.5.0.3, 12.5.0.2 and 12.4.0.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Application Testing Suite. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Application Testing Suite accessible data. CVSS v3.0 Base Score 5.3 (Integrity impacts).

  • Published: Jan 27, 2017
  • Updated: Apr 13, 2023
  • CVE: CVE-2017-3311
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
oracle / application_testing_suite 12.5.0.2 12.5.0.2.x
oracle / application_testing_suite 12.4.0.2 12.4.0.2.x
oracle / application_testing_suite 12.5.0.3 12.5.0.3.x