ID CVE-2014-2457
Summary Unspecified vulnerability in the Oracle Agile Product Lifecycle component in Oracle Supply Chain Products Suite 6.0 and 6.1.0 allows remote attackers to affect integrity via unknown vectors related to Install.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:supply_chain_products_suite:6.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:supply_chain_products_suite:6.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:supply_chain_products_suite:6.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:supply_chain_products_suite:6.1.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 16-04-2014 - 18:24)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:P/A:N
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html
Last major update 16-04-2014 - 18:24
Published 16-04-2014 - 02:55
Last modified 16-04-2014 - 18:24
Back to Top