Vulnerability Details CVE-2014-4251
Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect integrity via vectors related to plugin 1.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.0%
CVSS Severity
CVSS v2 Score 3.5
References
- http://seclists.org/fulldisclosure/2014/Dec/23
- http://secunia.com/advisories/59204
- http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
- http://www.securityfocus.com/archive/1/534161/100/0/threaded
- http://www.securityfocus.com/bid/68650
- http://www.securitytracker.com/id/1030594
- http://www.vmware.com/security/advisories/VMSA-2014-0012.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94560
- http://seclists.org/fulldisclosure/2014/Dec/23
- http://secunia.com/advisories/59204
- http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
- http://www.securityfocus.com/archive/1/534161/100/0/threaded
- http://www.securityfocus.com/bid/68650
- http://www.securitytracker.com/id/1030594
- http://www.vmware.com/security/advisories/VMSA-2014-0012.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94560
Products affected by CVE-2014-4251
-
cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.0
-
cpe:2.3:a:oracle:fusion_middleware:12.1.2.0.0