PT-2014-1712 · Oracle · Oracle Weblogic Server

Publicado

2014-07-16

Atualizado

2018-10-09

CVE-2014-4202

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Oracle WebLogic Server versions 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0

Description The issue allows remote attackers to affect availability via vectors related to WLS - Web Services. This can lead to a disruption in data access.

Recommendations For versions 10.0.2.0, 10.3.6.0, 12.1.1.0, and 12.1.2.0, consider restricting access to WLS - Web Services to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

BDU:2015-00725

CVE-2014-4202

Produtos afetados

Oracle Weblogic Server

PT-2014-1712 · Oracle · Oracle Weblogic Server

CVE-2014-4202

Identificadores relacionados

Produtos afetados

Referências · 11