nvd-json-data-feeds/CVE-2015/CVE-2015-49xx/CVE-2015-4914.json

{
  "id": "CVE-2015-4914",
  "sourceIdentifier": "secalert_us@oracle.com",
  "published": "2015-10-22T00:00:17.130",
  "lastModified": "2016-12-24T02:59:28.590",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 10.1.3.5, 11.1.1.7, 11.1.1.9, 12.1.2.0, and 12.1.3.0 allows remote authenticated users to affect confidentiality via unknown vectors related to Web Listener."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en el componente Oracle HTTP Server en Oracle Fusion Middleware 10.1.3.5, 11.1.1.7, 11.1.1.9, 12.1.2.0 y 12.1.3.0 permite a usuarios remotos autenticados afectar a la confidencialidad a trav\u00e9s de vectores desconocidos relacionados con Web Listener."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N",
          "accessVector": "NETWORK",
          "accessComplexity": "MEDIUM",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 3.5
        },
        "baseSeverity": "LOW",
        "exploitabilityScore": 6.8,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:fusion_middleware:10.1.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "17FCAA6C-F1A6-469D-9449-9A99D3E70A70"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:fusion_middleware:11.1.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "6557F5A6-98AA-4D70-A8EF-F9303CBD9D0C"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:fusion_middleware:11.1.1.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "517ADEF7-97A4-4A3F-874D-5D1B25FA24D1"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:fusion_middleware:12.1.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "104D2726-C5B6-4E15-8BD3-F27C0371B13F"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:fusion_middleware:12.1.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "45BD5702-4B15-4B29-A12A-0089897F0E47"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html",
      "source": "secalert_us@oracle.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.securitytracker.com/id/1033907",
      "source": "secalert_us@oracle.com"
    }
  ]
}