Lucene search

K
cve[email protected]CVE-2015-2570
HistoryApr 16, 2015 - 5:00 p.m.

CVE-2015-2570

2015-04-1617:00:03
web.nvd.nist.gov
20
vulnerability
oracle
demand planning
supply chain
security
nvd
cve-2015-2570

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

5.5 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.2%

Unspecified vulnerability in the Oracle Demand Planning component in Oracle Supply Chain Products Suite 11.5.10, 12.0, 12.1, and 12.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Security.

Affected configurations

NVD
Node
oraclesupply_chain_products_suiteMatch11.5.10
OR
oraclesupply_chain_products_suiteMatch12.0.0
OR
oraclesupply_chain_products_suiteMatch12.1.0
OR
oraclesupply_chain_products_suiteMatch12.2.0

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

5.5 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

57.2%