Lucene search
HistoryApr 16, 2014 - 1:55 a.m.
CVE-2014-2406
CVSS2
8.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
5.4
Confidence
Low
EPSS
0.064
Percentile
93.7%
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to “Advisor” and “Select Any Dictionary” privileges.
Affected configurations
Node
oracledatabase_serverMatch11.1.0.7
ORoracledatabase_serverMatch11.2.0.3
ORoracledatabase_serverMatch11.2.0.4
ORoracledatabase_serverMatch12.1.0.1
Related
cvelist
cvelist
CVE-2014-2406
2014-04-16 01:00:00
prion
prion
Design/Logic Flaw
2014-04-16 01:55:00
cve
cve
CVE-2014-2406
2014-04-16 01:55:10
nessus
nessus
Oracle Database Multiple Vulnerabilities (April 2014 CPU)
2014-04-16 00:00:00
openvas
openvas
Oracle Database Server Multiple Unspecified Vulnerabilities-01 (Apr 2014)
2014-04-18 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2014
2014-04-15 00:00:00
securityvulns
securityvulns
CVSS2
8.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:S/C:C/I:C/A:C
AI Score
5.4
Confidence
Low
EPSS
0.064
Percentile
93.7%
Related for NVD:CVE-2014-2406