CVE-2014-0377

medium

Description

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality via vectors related to SYS tables.

References

http://www.securitytracker.com/id/1029607

http://www.securityfocus.com/bid/64824

http://www.securityfocus.com/bid/64758

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

http://secunia.com/advisories/56452

http://osvdb.org/102081

http://lists.opensuse.org/opensuse-security-announce/2014-01/msg00007.html

Details

Source: Mitre, NVD

Published: 2014-01-15

Updated: 2014-03-06

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 4.3

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N