CVE-2014-4222

Published: Jul 17, 2014Modified: May 6, 2026

2.1

Vector

AV:N/AC:H/Au:S/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.7.0 and 12.1.2.0 allows remote authenticated users to affect confidentiality via vectors related to plugin 1.1.

Affected (2)

Products: Oracle: Fusion Middleware

Oracle

1 product

Fusion Middleware

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Fusion Middleware	Version 11.1.1.7.0
Oracle Fusion Middleware	Version 12.1.2.0.0

References (16)

http://seclists.org/fulldisclosure/2014/Dec/23

Source: secalert_us@oracle.com

http://secunia.com/advisories/59204

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Source: secalert_us@oracle.com

Vendor Advisory

http://www.securityfocus.com/archive/1/534161/100/0/threaded

Source: secalert_us@oracle.com

http://www.securityfocus.com/bid/68652

Source: secalert_us@oracle.com

http://www.securitytracker.com/id/1030594

Source: secalert_us@oracle.com

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

Source: secalert_us@oracle.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/94561

Source: secalert_us@oracle.com

http://seclists.org/fulldisclosure/2014/Dec/23