CVE-2014-4222

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2014-4222
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect confidentiality via vectors related to plugin 1.1.

2.1 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:S/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://seclists.org/fulldisclosure/2014/Dec/23
http://secunia.com/advisories/59204
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html Vendor Advisory
http://www.securityfocus.com/archive/1/534161/100/0/threaded
http://www.securityfocus.com/bid/68652
http://www.securitytracker.com/id/1030594
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/94561
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:12.1.2.0.0:*:*:*:*:*:*:*
History

No history.

Information

Published : 2014-07-17 05:10

Updated : 2018-10-09 19:48

NVD link : CVE-2014-4222

Mitre link : CVE-2014-4222

CVE.ORG link : CVE-2014-4222

JSON object : View

Products Affected

oracle

  • fusion_middleware
CWE
NVD-CWE-noinfo