Vulnerability CVE-2014-6488


Published: 2014-10-15   Modified: 2014-10-16

Description:
Unspecified vulnerability in the Enterprise Manager for Oracle Database component in Oracle Enterprise Manager Grid Control EM Base Platform: 10.2.0.5, 11.1.0.1 EM DB Control: 11.1.0.7, 11.2.0.3, 11.2.0.4 EM Plugin for DB: 12.1.0.4, 12.1.0.5, and 12.1.0.6 allows remote authenticated users to affect integrity via unknown vectors related to Content Management.

CVSS2 => (AV:N/AC:H/Au:S/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Remote
High
Single time
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None
Affected software
Oracle -> Enterprise manager database control 
Oracle -> Enterprise manager grid control 

 References:
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www.securitytracker.com/id/1031041
http://www.securityfocus.com/bid/70506

Copyright 2024, cxsecurity.com

 

Back to Top