Lucene search

[email protected]CVE-2015-0396

HistoryJan 21, 2015 - 6:59 p.m.

CVE-2015-0396

2015-01-2118:59:39

[email protected]

web.nvd.nist.gov

cve-2015-0396

oracle

glassfish server

vulnerability

confidentiality

integrity

availability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

5.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.9%

JSON

Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 and 3.1.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Admin Console.

Affected configurations

NVD

Node

oraclefusion_middlewareMatch3.0.1

oraclefusion_middlewareMatch3.1.2

CPENameOperatorVersion
oracle:fusion_middlewareoracle fusion middlewareeq3.0.1
oracle:fusion_middlewareoracle fusion middlewareeq3.1.2

CPE	Name	Operator	Version
oracle:fusion_middleware	oracle fusion middleware	eq	3.0.1
oracle:fusion_middleware	oracle fusion middleware	eq	3.1.2

References

secunia.com/advisories/62480

www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

www.securityfocus.com/bid/72121

www.securitytracker.com/id/1031570

exchange.xforce.ibmcloud.com/vulnerabilities/100073

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

5.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.9%

JSON

Related for CVE-2015-0396

nvd1 prion1 nessus1 debiancve1 cvelist1 securityvulns1 oracle1