ID CVE-2015-4745
Summary Unspecified vulnerability in the Oracle Endeca Information Discovery Studio component in Oracle Fusion Middleware 2.2.2, 2.3, 2.4, 3.0, and 3.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Integrator, a different vulnerability than CVE-2015-2602, CVE-2015-2603, CVE-2015-2604, CVE-2015-2605, and CVE-2015-2606.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:fusion_middleware:2.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:2.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:2.3:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:2.4:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:3.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:3.1:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 22-12-2016 - 02:59)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 75750
confirm http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
misc http://www.zerodayinitiative.com/advisories/ZDI-15-357
Last major update 22-12-2016 - 02:59
Published 16-07-2015 - 11:00
Last modified 22-12-2016 - 02:59
Back to Top