| ID |
CVE-2014-2404
|
| Summary |
Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, and 11.1.2.2.0 allows remote authenticated users to affect confidentiality via unknown vectors related to WebGate. Per: http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
"Please refer to My Oracle Support Note 1643382.1 for instructions on how to address this issue." |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:oracle:fusion_middleware:10.1.4.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:10.1.4.3:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:fusion_middleware:11.1.1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:11.1.1.3.0:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:fusion_middleware:11.1.1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:11.1.1.5.0:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.0:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:fusion_middleware:11.1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:11.1.2.0:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:fusion_middleware:11.1.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:11.1.2.1.0:*:*:*:*:*:*:*
-
cpe:2.3:a:oracle:fusion_middleware:11.1.2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:11.1.2.2.0:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 4.0 (as of 21-06-2014 - 04:40) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-noinfo |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
SINGLE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
NONE |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:S/C:P/I:N/A:N
|
| refmap
via4
|
|
| Last major update |
21-06-2014 - 04:40 |
| Published |
16-04-2014 - 01:55 |
| Last modified |
21-06-2014 - 04:40 |
