CVE-2015-2607Oracle Commerce Platform vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.3%
top 44.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Commerce Platform
Timeline
PublishedJul 16
Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.0.2, 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to affect confidentiality via unknown vectors related to Content Acquisition System.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDoracle/commerce_platform5 versions+4

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-58gq-pfvp-f697: Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 32022-05-17
CVEList
CVE-2015-2607: Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 32015-07-16
CVE-2015-2607 — Oracle Commerce Platform vulnerability | cvebase