Vulnerability Details : CVE-2014-4203
Unspecified vulnerability in the Hyperion Enterprise Performance Management Architect component in Oracle Hyperion 11.1.2.2 and 11.1.2.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Property Editing.
Products affected by CVE-2014-4203
- cpe:2.3:a:oracle:hyperion:11.1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:hyperion:11.1.2.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-4203
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 27 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-4203
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.1
|
MEDIUM | AV:L/AC:M/Au:S/C:P/I:P/A:P |
2.7
|
6.4
|
NIST |
References for CVE-2014-4203
-
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
VMSA-2014-0012.1
-
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
Oracle Critical Patch Update - July 2014Vendor Advisory
-
http://seclists.org/fulldisclosure/2014/Dec/23
Full Disclosure: NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/94564
Oracle Hyperion Enterprise Performance Management Architect Property Editing unspecified CVE-2014-4203 Vulnerability Report
-
http://www.securityfocus.com/archive/1/534161/100/0/threaded
SecurityFocus
-
http://www.securityfocus.com/bid/68568
Oracle Hyperion Enterprise Performance Management Architect Local Security Vulnerability
-
http://www.securitytracker.com/id/1030579
Oracle Hyperion Bugs Let Remote and Local Users Partially Access and Modify Data and Partially Deny Service - SecurityTracker
Jump to