Vulnerability in the Oracle HTTP Server component of Oracle Fusion Middleware (subcomponent: Web Listener). The supported version that is affected is 12.2.1.3. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle HTTP Server executes to compromise Oracle HTTP Server. Successful attacks of this vulnerability can result in takeover of Oracle HTTP Server. CVSS 3.0 Base Score 7.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).
Metrics
Affected Vendors & Products
References
History
Wed, 02 Oct 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2019-01-16T19:00:00
Updated: 2024-10-02T16:21:27.113Z
Reserved: 2018-12-14T00:00:00
Link: CVE-2019-2414
Vulnrichment
Updated: 2024-08-04T18:49:47.699Z
NVD
Status : Modified
Published: 2019-01-16T19:30:31.343
Modified: 2024-11-21T04:40:49.557
Link: CVE-2019-2414
Redhat
No data.