KEVIntel
Back to KEVs
9.8
CVSS
Critical

CVE-2012-1710

PUBLISHED

Unspecified vulnerability in the Oracle WebCenter Forms Recognition component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to...

Exploited in the wild Used in malware Remote Low complexity No user interaction
Vendor
Oracle
Product
Fusion Middleware
Published
May 03, 2012
EPSS

Description

Unspecified vulnerability in the Oracle WebCenter Forms Recognition component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Designer, a different vulnerability than CVE-2012-1709.

cisa malware

CVSS scores

CVSS v3.1 9.8 Critical

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0 7.5

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitation status

Exploited in the wild

Recorded 2022-05-25 00:00:00 UTC · Source

Used in malware

Recorded 2026-06-02 14:08:25 UTC · Source

SSVC decision points

Exploitation
active
Automatable
Yes
Technical impact
partial

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CISA May 25, 2022

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel

  • Exploit Used in Malware