CVE-2015-0431

{"id": "CVE-2015-0431", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-01-21T19:59:17.017", "references": [{"url": "http://secunia.com/advisories/62506", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/72125", "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id/1031576", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100107", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/62506", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/72125", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1031576", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/100107", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.1, 6.2, 6.3.0 6.3.1, 6.3.2, 6.3.4, and 6.3.5 allows remote attackers to affect integrity via unknown vectors related to UI Infrastructure."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Oracle Transportation Management en Oracle Supply Chain Products Suite 6.1, 6.2, 6.3.0 6.3.1, 6.3.2, 6.3.4, y 6.3.5 permite a atacantes remotos afectar la integridad a trav\u00e9s de vectores desconocidos relacionados con la infraestructura de la UI."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD2CCA6E-5F9B-499C-A4FB-D14A42A822D9"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D4C8E58-FD8C-4269-98B2-FAB85271C9C1"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA22F51B-5D1B-4B94-B8ED-6AF30B80EB43"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F30344A5-25A3-4335-9FED-795AC9F60852"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C7090DC-DDC0-4C26-9B00-F63163E5A3C8"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A955B09E-863E-4B7C-96F6-ED4887AD497B"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97188E2A-B205-452F-A1B8-2BF0DB6769F4"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}