Lucene search

OracleCVE-2014-0436

HistoryJul 17, 2014 - 5:10 a.m.

CVE-2014-0436

2014-07-1705:10:13

oracle

web.nvd.nist.gov

cve-2014-0436

unspecified vulnerability

oracle hyperion

bi+

remote attackers

integrity

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

71.7%

JSON

Unspecified vulnerability in the Hyperion BI+ component in Oracle Hyperion 11.1.2.2 and 11.1.2.3 allows remote attackers to affect integrity via unknown vectors related to Web Analysis.

Affected configurations

Nvd

Node

oraclehyperionMatch11.1.2.2

oraclehyperionMatch11.1.2.3

VendorProductVersionCPE
oraclehyperion11.1.2.2cpe:2.3:a:oracle:hyperion:11.1.2.2:*:*:*:*:*:*:*
oraclehyperion11.1.2.3cpe:2.3:a:oracle:hyperion:11.1.2.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	hyperion	11.1.2.2	cpe:2.3:a:oracle:hyperion:11.1.2.2:::::::*
oracle	hyperion	11.1.2.3	cpe:2.3:a:oracle:hyperion:11.1.2.3:::::::*

References

seclists.org/fulldisclosure/2014/Dec/23

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.securityfocus.com/bid/68595

www.securitytracker.com/id/1030579

www.vmware.com/security/advisories/VMSA-2014-0012.html

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

Low

EPSS

0.003

Percentile

71.7%

JSON

Related for CVE-2014-0436