Vulnerability Details CVE-2014-0372
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, and 12.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to DM Others.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.205
EPSS Ranking 95.3%
CVSS Severity
CVSS v2 Score 5.5
References
- http://osvdb.org/102103
- http://secunia.com/advisories/56474
- http://www.exploit-db.com/exploits/31993
- http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
- http://www.securityfocus.com/archive/1/531316/100/0/threaded
- http://www.securityfocus.com/bid/64758
- http://www.securityfocus.com/bid/64826
- http://www.securitytracker.com/id/1029620
- http://osvdb.org/102103
- http://secunia.com/advisories/56474
- http://www.exploit-db.com/exploits/31993
- http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
- http://www.securityfocus.com/archive/1/531316/100/0/threaded
- http://www.securityfocus.com/bid/64758
- http://www.securityfocus.com/bid/64826
- http://www.securitytracker.com/id/1029620
Products affected by CVE-2014-0372
-
cpe:2.3:a:oracle:supply_chain_products_suite:7.2.0.3
-
cpe:2.3:a:oracle:supply_chain_products_suite_sql-server:12.2.0
-
cpe:2.3:a:oracle:supply_chain_products_suite_sql-server:12.2.1
-
cpe:2.3:a:oracle:supply_chain_products_suite_sql-server:12.2.2
-
cpe:2.3:a:oracle:supply_chain_products_suite_sql-server:7.3.0
-
cpe:2.3:a:oracle:supply_chain_products_suite_sql-server:7.3.1