CVE-2014-4206 - Unspecified vulnerability in the Hyperion Enterprise Performance Management Architect component in O

CVE-2014-4206

Summary

Unspecified vulnerability in the Hyperion Enterprise Performance Management Architect component in Oracle Hyperion 11.1.2.2 and 11.1.2.3 allows local users to affect integrity and availability via unknown vectors related to Data Synchronizer.

References

Vulnerable Configurations

cpe:2.3:a:oracle:hyperion:11.1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion:11.1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion:11.1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:oracle:hyperion:11.1.2.3:*:*:*:*:*:*:*

CVSS

Base:	3.3 (as of 09-10-2018 - 19:47)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:M/Au:N/C:N/I:P/A:P

refmap via4

bid	68582
bugtraq	20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities
confirm	http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html http://www.vmware.com/security/advisories/VMSA-2014-0012.html
fulldisc	20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities
sectrack	1030579
xf	oracle-cpujul2014-cve20144206(94568)

Last major update

09-10-2018 - 19:47

Published

17-07-2014 - 05:10

Last modified

09-10-2018 - 19:47