CVE-2014-4234 : Unspecified vulnerability in the Oracle Transportation Management component in O

Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1, 6.2, 6.3, 6.3.1, 6.3.2, 6.3.3, and 6.3.4 allows remote attackers to affect confidentiality via unknown vectors related to Data, Domain & Function Security.

Published 2014-07-17 11:17:10

Updated 2025-04-12 10:46:41

Source Oracle

View at NVD, CVE.org

Products affected by CVE-2014-4234

Oracle » Supply Chain Products Suite » Version: 6.1.0
cpe:2.3:a:oracle:supply_chain_products_suite:6.1.0:*:*:*:*:*:*:*
Matching versions
Oracle » Supply Chain Products Suite » Version: 6.2.0
cpe:2.3:a:oracle:supply_chain_products_suite:6.2.0:*:*:*:*:*:*:*
Matching versions
Oracle » Supply Chain Products Suite » Version: 6.3.0
cpe:2.3:a:oracle:supply_chain_products_suite:6.3.0:*:*:*:*:*:*:*
Matching versions
Oracle » Supply Chain Products Suite » Version: 6.3.1
cpe:2.3:a:oracle:supply_chain_products_suite:6.3.1:*:*:*:*:*:*:*
Matching versions
Oracle » Supply Chain Products Suite » Version: 6.3.2
cpe:2.3:a:oracle:supply_chain_products_suite:6.3.2:*:*:*:*:*:*:*
Matching versions
Oracle » Supply Chain Products Suite » Version: 6.3.3
cpe:2.3:a:oracle:supply_chain_products_suite:6.3.3:*:*:*:*:*:*:*
Matching versions
Oracle » Supply Chain Products Suite » Version: 6.3.4
cpe:2.3:a:oracle:supply_chain_products_suite:6.3.4:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2014-4234

EPSS FAQ

0.65%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 68 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2014-4234

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

References for CVE-2014-4234

http://secunia.com/advisories/59322

Sign in

CVEs referencing this url
http://www.vmware.com/security/advisories/VMSA-2014-0012.html

VMSA-2014-0012.1

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Oracle Critical Patch Update - July 2014
Vendor Advisory

CVEs referencing this url
http://www.securitytracker.com/id/1030582

Oracle Supply Chain Products Suite Bugs Let Remote Users Partially Access and Modify Data - SecurityTracker

CVEs referencing this url
http://seclists.org/fulldisclosure/2014/Dec/23

Full Disclosure: NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities

CVEs referencing this url
http://www.securityfocus.com/bid/68643

Oracle Transportation Management CVE-2014-4234 Remote Security Vulnerability
https://exchange.xforce.ibmcloud.com/vulnerabilities/94575

Oracle Transportation Management DDFS information disclosure CVE-2014-4234 Vulnerability Report
http://www.securityfocus.com/archive/1/534161/100/0/threaded

SecurityFocus

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2014-4234

Products affected by CVE-2014-4234

Exploit prediction scoring system (EPSS) score for CVE-2014-4234

CVSS scores for CVE-2014-4234

References for CVE-2014-4234