Lucene search

[email protected]CVE-2014-4257

HistoryJul 17, 2014 - 11:17 a.m.

CVE-2014-4257

2014-07-1711:17:10

[email protected]

web.nvd.nist.gov

cve-2014-4257

oracle

webcenter portal

fusion middleware

vulnerability

confidentiality

portlet services

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

5.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON

Unspecified vulnerability in the Oracle WebCenter Portal component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.8.0 allows remote attackers to affect confidentiality via unknown vectors related to Portlet Services.

Affected configurations

NVD

Node

oraclefusion_middlewareMatch11.1.1.7.0

oraclefusion_middlewareMatch11.1.1.8.0

CPENameOperatorVersion
oracle:fusion_middlewareoracle fusion middlewareeq11.1.1.7.0
oracle:fusion_middlewareoracle fusion middlewareeq11.1.1.8.0

CPE	Name	Operator	Version
oracle:fusion_middleware	oracle fusion middleware	eq	11.1.1.7.0
oracle:fusion_middleware	oracle fusion middleware	eq	11.1.1.8.0

References

seclists.org/fulldisclosure/2014/Dec/23

secunia.com/advisories/58739

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.securityfocus.com/bid/68563

www.vmware.com/security/advisories/VMSA-2014-0012.html

exchange.xforce.ibmcloud.com/vulnerabilities/94541

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

5.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.0%

JSON

Related for CVE-2014-4257

prion1 cvelist1 nvd1 securityvulns1 oracle1