| Vulnerability Name: | CVE-2014-0367 (CCN-90284) | ||||||||
| Assigned: | 2013-12-12 | ||||||||
| Published: | 2014-01-14 | ||||||||
| Updated: | 2014-02-07 | ||||||||
| Summary: | Unspecified vulnerability in the Hyperion Essbase Administration Services component in Oracle Hyperion 11.1.2.1, 11.1.2.2, and 11.1.2.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Admin Console. | ||||||||
| CVSS v3 Severity: | 4.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N)
| ||||||||
| CVSS v2 Severity: | 5.5 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N) 4.0 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N/E:U/RL:OF/RC:C)
4.0 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||
| Vulnerability Consequences: | Unknown | ||||||||
| References: | Source: MITRE Type: CNA CVE-2014-0367 Source: OSVDB Type: UNKNOWN 102114 Source: SECUNIA Type: UNKNOWN 56469 Source: CCN Type: Oracle Web site Oracle Critical Patch Update Advisory - January 2014 Source: CONFIRM Type: Vendor Advisory http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html Source: BID Type: UNKNOWN 64758 Source: CCN Type: BID-64758 RETIRED: Oracle January 2014 Critical Patch Update Multiple Vulnerabilities Source: BID Type: UNKNOWN 64814 Source: CCN Type: BID-64814 Oracle Hyperion Essbase Administration Services CVE-2014-0367 Remote Security Vulnerability Source: XF Type: UNKNOWN oracle-cpujan2014-cve20140367(90284) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||