Vulnerability Details : CVE-2014-0425
Unspecified vulnerability in the PeopleSoft Enterprise SCM Services Procurement component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Security.
Products affected by CVE-2014-0425
- cpe:2.3:a:oracle:peoplesoft_products:9.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-0425
0.29%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 65 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-0425
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:N/A:N |
8.0
|
2.9
|
NIST |
References for CVE-2014-0425
-
http://www.securitytracker.com/id/1029623
Oracle PeopleSoft Products Bugs Let Remote Users Partially Access and Modify Data and Partially Deny Service - SecurityTracker
-
http://www.securityfocus.com/bid/64889
Oracle PeopleSoft Enterprise SCM Services Procurement CVE-2014-0425 Remote Security Vulnerability
-
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
Oracle Critical Patch Update - January 2014Vendor Advisory
-
http://www.securityfocus.com/bid/64758
RETIRED: Oracle January 2014 Critical Patch Update Multiple Vulnerabilities
Jump to