Lucene search

[email protected]CVE-2015-0461

HistoryApr 16, 2015 - 4:59 p.m.

CVE-2015-0461

2015-04-1616:59:18

[email protected]

web.nvd.nist.gov

cve-2015-0461

oracle

access manager

fusion middleware

authentication engine

nvd

7 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:C/A:N

5.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

45.3%

JSON

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5 and 11.1.1.7 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Authentication Engine.

Affected configurations

NVD

Node

oraclefusion_middlewareMatch11.1.1.5

oraclefusion_middlewareMatch11.1.1.7

CPENameOperatorVersion
oracle:fusion_middlewareoracle fusion middlewareeq11.1.1.5
oracle:fusion_middlewareoracle fusion middlewareeq11.1.1.7

CPE	Name	Operator	Version
oracle:fusion_middleware	oracle fusion middleware	eq	11.1.1.5
oracle:fusion_middleware	oracle fusion middleware	eq	11.1.1.7

References

www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

www.securitytracker.com/id/1032131