{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Oracle Outside In Technology version 8.3.7.0","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle Application Server Single Sign-On version 10.1.4.3.0","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle BI Publisher version 10.1.3.4.2, version 11.1.1.5.0, version 11.1.1.6.0, et version 11.1.1.6.2","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle WebCenter Sites version 6.1, version 6.2, version 6.3.x, version 7, version 7.0.1, version 7.0.2, version 7.0.3, version 7.5, version 7.6.1, version 7.6.2 et version 11.1.1.6.0","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle Event Processing version 2.0, version 11.1.1.4.0 et version 11.1.1.6.0","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle Reports Developer version 11.1.1.4, version 11.1.1.6 et version 11.1.2.0","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle WebLogic Server version 9.2.4.0, version 10.0.2.0, version 10.3.5.0, version 10.3.6.0 et version 12.1.1.0","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle JRockit version 28.2.4 et versions ant\u00e9rieures","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}},{"description":"Oracle Imaging and Process Management version 10.1.3.6.0","product":{"name":"N/A","vendor":{"name":"Oracle","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2012-0090","url":"https://www.cve.org/CVERecord?id=CVE-2012-0090"},{"name":"CVE-2012-3217","url":"https://www.cve.org/CVERecord?id=CVE-2012-3217"},{"name":"CVE-2012-3185","url":"https://www.cve.org/CVERecord?id=CVE-2012-3185"},{"name":"CVE-2011-1411","url":"https://www.cve.org/CVERecord?id=CVE-2011-1411"},{"name":"CVE-2012-0518","url":"https://www.cve.org/CVERecord?id=CVE-2012-0518"},{"name":"CVE-2012-1686","url":"https://www.cve.org/CVERecord?id=CVE-2012-1686"},{"name":"CVE-2012-3193","url":"https://www.cve.org/CVERecord?id=CVE-2012-3193"},{"name":"CVE-2012-5065","url":"https://www.cve.org/CVERecord?id=CVE-2012-5065"},{"name":"CVE-2012-3184","url":"https://www.cve.org/CVERecord?id=CVE-2012-3184"},{"name":"CVE-2012-3175","url":"https://www.cve.org/CVERecord?id=CVE-2012-3175"},{"name":"CVE-2012-3152","url":"https://www.cve.org/CVERecord?id=CVE-2012-3152"},{"name":"CVE-2012-0092","url":"https://www.cve.org/CVERecord?id=CVE-2012-0092"},{"name":"CVE-2012-3186","url":"https://www.cve.org/CVERecord?id=CVE-2012-3186"},{"name":"CVE-2012-3194","url":"https://www.cve.org/CVERecord?id=CVE-2012-3194"},{"name":"CVE-2012-0086","url":"https://www.cve.org/CVERecord?id=CVE-2012-0086"},{"name":"CVE-2012-3202","url":"https://www.cve.org/CVERecord?id=CVE-2012-3202"},{"name":"CVE-2012-0108","url":"https://www.cve.org/CVERecord?id=CVE-2012-0108"},{"name":"CVE-2012-0106","url":"https://www.cve.org/CVERecord?id=CVE-2012-0106"},{"name":"CVE-2012-0107","url":"https://www.cve.org/CVERecord?id=CVE-2012-0107"},{"name":"CVE-2012-3153","url":"https://www.cve.org/CVERecord?id=CVE-2012-3153"},{"name":"CVE-2012-3183","url":"https://www.cve.org/CVERecord?id=CVE-2012-3183"},{"name":"CVE-2012-3214","url":"https://www.cve.org/CVERecord?id=CVE-2012-3214"},{"name":"CVE-2012-0093","url":"https://www.cve.org/CVERecord?id=CVE-2012-0093"},{"name":"CVE-2012-0095","url":"https://www.cve.org/CVERecord?id=CVE-2012-0095"},{"name":"CVE-2012-0071","url":"https://www.cve.org/CVERecord?id=CVE-2012-0071"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Oracle cpuoct2012-1515893 du 16    octobre 2012 :","url":"http://www.oracle.com/technetwork/topics/security/cpuoct2012-1515893.html"}],"reference":"CERTA-2012-AVI-578","revisions":[{"description":"version initiale.","revision_date":"2012-10-17T00:00:00.000000"}],"risks":[{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">Oracle Fusion Middleware</span>. Certaines d'entre elles\npermettent une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un\ncontournement de la politique de s\u00e9curit\u00e9 et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Oracle Fusion Middleware","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Oracle cpuoct2012-1515893 du 16 Octobre 2012","url":null}]}