CVE-2015-4823

Unspecified vulnerability in the Hyperion Installation Technology component in Oracle Hyperion 11.1.2.3 allows local users to affect confidentiality via unknown vectors related to Essbase Rapid Deploy.

CVSS v2.0 1.2 LOW

1.2^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:H/Au:N/C:P/I:N/A:N

Exploitability : 1.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	Vendor Advisory
http://www.securityfocus.com/bid/77139
http://www.securitytracker.com/id/1033876
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html	Vendor Advisory
http://www.securityfocus.com/bid/77139
http://www.securitytracker.com/id/1033876

Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:hyperion:11.1.2.3:*:*:*:*:*:*:*

History

21 Nov 2024, 02:31

Type	Values Removed	Values Added
References	~~() http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html - Vendor Advisory~~	() http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/77139 -~~	() http://www.securityfocus.com/bid/77139 -
References	~~() http://www.securitytracker.com/id/1033876 -~~	() http://www.securitytracker.com/id/1033876 -

Information

Published : 2015-10-21 21:59

Updated : 2024-11-21 02:31

NVD link : CVE-2015-4823

Mitre link : CVE-2015-4823

CVE.ORG link : CVE-2015-4823

JSON object : View

Products Affected

oracle

hyperion

CWE

NVD-CWE-noinfo

{"id": "CVE-2015-4823", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 1.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-10-21T21:59:38.310", "references": [{"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/77139", "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id/1033876", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/77139", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1033876", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Hyperion Installation Technology component in Oracle Hyperion 11.1.2.3 allows local users to affect confidentiality via unknown vectors related to Essbase Rapid Deploy."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Hyperion Installation Technology en Oracle Hyperion 11.1.2.3 permite a usuarios locales afectar a la confidencialidad a trav\u00e9s de vectores desconocidos relacionados con Essbase Rapid Deploy."}], "lastModified": "2024-11-21T02:31:49.347", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:hyperion:11.1.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D31D1BC-B017-4464-A0E3-84C2F20887C3"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}