- Description
- Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.6, 11.1.1.7, and 11.1.2.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security and Authentication.
- Source
- secalert_us@oracle.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
- Comment
- Per: http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html "Please refer to Doc ID My Oracle Support Note 1608683.1 for instructions on how to address this issue."
- Impact
- -
- Solution
- -
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:fusion_middleware:11.1.1.6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6935E726-6AA6-468F-AAEB-BC679FD5CFFC"
},
{
"criteria": "cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E8934DB1-B2A1-4C3B-B000-78826FC45C7C"
},
{
"criteria": "cpe:2.3:a:oracle:fusion_middleware:11.1.2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D5D8E14F-4F2F-40ED-8ACE-D92FC2CE937B"
}
],
"operator": "OR"
}
]
}
]