Description

Unspecified vulnerability in the JPublisher component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2014-4290, CVE-2014-4291, CVE-2014-4292, CVE-2014-4293, CVE-2014-4296, CVE-2014-4297, CVE-2014-4310, and CVE-2014-6547. NOTE: this issue was originally mapped to CVE-2014-4301, but CVE-2014-4301 is for an unrelated vulnerability.

Remediation

References

CVE-2014-6477

Related Vulnerabilities

WordPress Plugin MiwoEvents-Manage & Book Events Unspecified Vulnerability (1.2.0)

ReviveAdserver Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-7371)

WordPress Plugin WP-Members Membership Unspecified Vulnerability (3.1.9.2)

WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.49)

Drupal Other Vulnerability (CVE-2006-3570)

Severity

Medium

Classification

CVE-2014-6477 CWE-200

Tags

Missing Update Known Vulnerabilities