ID CVE-2014-6557
Summary Unspecified vulnerability in the Application Performance Management component in Oracle Enterprise Manager Grid Control before 12.1.0.6.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to End User Experience Management.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:-:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:-:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:6.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:6.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:10.2.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:11.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:11.2.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:11.2.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_manager_grid_control:12.1.0.5:*:*:*:*:*:*:*
CVSS
Base: 4.9 (as of 13-11-2015 - 16:58)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:S/C:P/I:P/A:N
refmap via4
bid 70512
confirm http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
sectrack 1031041
Last major update 13-11-2015 - 16:58
Published 15-10-2014 - 22:55
Back to Top