Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2404

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2014-2404
Last Modified 21 Jun 2014 12:40:43
Published 15 Apr 2014 09:55:10
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-2404

Summary

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 10.1.4.3, 11.1.1.3.0, 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0, 11.1.2.1.0, and 11.1.2.2.0 allows remote authenticated users to affect confidentiality via unknown vectors related to WebGate.

Vulnerable Systems

Application

  • Oracle Fusion Middleware 10.1.4.3

  • Oracle Fusion Middleware 11.1.1.3.0

  • Oracle Fusion Middleware 11.1.1.5.0

  • Oracle Fusion Middleware 11.1.1.7.0

  • Oracle Fusion Middleware 11.1.2.0

  • Oracle Fusion Middleware 11.1.2.1.0

  • Oracle Fusion Middleware 11.1.2.2.0


References

CONFIRM - http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html

BID - 66862

MISC - http://packetstormsecurity.com/files/127047/Oracle-Access-Manager-Information-Disclosure.html


Last Updated: 27 May 2016 11:04:58