Lucene search

[email protected]CVE-2014-2496

HistoryJul 17, 2014 - 5:10 a.m.

CVE-2014-2496

2014-07-1705:10:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2014-2496

peoplesoft

oracle

nvd

test framework

confidentiality

integrity

remote authentication

5.3 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

61.6%

JSON

Unspecified vulnerability in the PeopleSoft Enterprise PT PeopleTools component in Oracle PeopleSoft Products 8.52 and 8.53 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Test Framework.

CPENameOperatorVersion
oracle:peoplesoft_productsoracle peoplesoft productseq8.53
oracle:peoplesoft_productsoracle peoplesoft productseq8.52

CPE	Name	Operator	Version
oracle:peoplesoft_products	oracle peoplesoft products	eq	8.53
oracle:peoplesoft_products	oracle peoplesoft products	eq	8.52

References

seclists.org/fulldisclosure/2014/Dec/23

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.securitytracker.com/id/1030586

www.vmware.com/security/advisories/VMSA-2014-0012.html

5.3 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.002 Low

EPSS

Percentile

61.6%

JSON

Related for CVE-2014-2496

prion1 securityvulns1 oracle1