CVE-2014-4290Oracle Database Server vulnerability

3 documents3 sources
Severity
4.0MEDIUMNVD
EPSS
0.2%
top 61.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Database Server
Timeline
PublishedOct 15
Latest updateMay 17

Description

Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4291, CVE-2014-4292, CVE-2014-4293, CVE-2014-4296, CVE-2014-4297, CVE-2014-4310, CVE-2014-6547, and CVE-2014-6477.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

NVDoracle/database_server5 versions+4

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-95gp-v8cc-8rm4: Unspecified vulnerability in the JPublisher component in Oracle Database Server 112022-05-17
CVEList
CVE-2014-4290: Unspecified vulnerability in the JPublisher component in Oracle Database Server 112014-10-15
CVE-2014-4290 — Oracle Database Server vulnerability | cvebase