CVE-2014-4251

critical

Description

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect integrity via vectors related to plugin 1.1.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/94560

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

http://www.securitytracker.com/id/1030594

http://www.securityfocus.com/bid/68650

http://www.securityfocus.com/archive/1/534161/100/0/threaded

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

http://secunia.com/advisories/59204

http://seclists.org/fulldisclosure/2014/Dec/23

Details

Source: Mitre, NVD

Published: 2014-07-17

Updated: 2018-10-09

Risk Information

CVSS v2

Base Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N

Severity: Low

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

Detections

Analytics