Lucene search

[email protected]CVE-2014-2437

HistoryApr 16, 2014 - 2:55 a.m.

CVE-2014-2437

2014-04-1602:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

vulnerability

peoplesoft

oracle

confidentiality

remote attackers

integration broker

cve-2014-2437

5.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

56.1%

JSON

Unspecified vulnerability in the PeopleSoft Enterprise PT PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote attackers to affect confidentiality via unknown vectors related to Integration Broker, a different vulnerability than CVE-2014-2447.

CPENameOperatorVersion
oracle:peoplesoft_productsoracle peoplesoft productseq8.53
oracle:peoplesoft_productsoracle peoplesoft productseq8.52

CPE	Name	Operator	Version
oracle:peoplesoft_products	oracle peoplesoft products	eq	8.53
oracle:peoplesoft_products	oracle peoplesoft products	eq	8.52

References

www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

5.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

56.1%

JSON

Related for CVE-2014-2437

prion2 cve1 cvelist2 oracle1 securityvulns1