Lucene search

K

[email protected]NVD:CVE-2014-2479

HistoryJul 17, 2014 - 5:10 a.m.

CVE-2014-2479

2014-07-1705:10:14

[email protected]

web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.7 Medium

AI Score

Confidence

Low

0.035 Low

EPSS

Percentile

91.6%

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to WLS - Web Services.

Affected configurations

NVD

Node

oraclefusion_middlewareMatch10.0.2

OR

oraclefusion_middlewareMatch10.3.6

OR

oraclefusion_middlewareMatch12.1.1

OR

oraclefusion_middlewareMatch12.1.2.0.0

References

seclists.org/fulldisclosure/2014/Dec/23

www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

www.securityfocus.com/archive/1/534161/100/0/threaded

www.vmware.com/security/advisories/VMSA-2014-0012.html

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.7 Medium

AI Score

Confidence

Low

0.035 Low

EPSS

Percentile

91.6%

Related for NVD:CVE-2014-2479

cve1 prion1 cvelist1 ibm1 openvas1 securityvulns1 oracle1