CVE-2014-0372

Severity

55%

Complexity

80%

Confidentiality

81%

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, and 12.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to DM Others.

Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, and 12.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to DM Others.

CVSS 2.0 Base Score 5.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:S/C:P/I:P/A:N).

Overview

Type

Oracle Supply Chain Products Suite

First reported 11 years ago

2014-01-15 16:08:00

Last updated 6 years ago

2018-10-09 19:42:00

Affected Software

Oracle Supply Chain Products Suite 7.2.0.3

7.2.0.3

Oracle Supply Chain Products Suite SQL-Server 7.3.0

7.3.0

Oracle Supply Chain Products Suite SQL-Server 7.3.1

7.3.1

Oracle Supply Chain Products Suite SQL-Server 12.2.0

12.2.0

Oracle Supply Chain Products Suite SQL-Server 12.2.1

12.2.1

Oracle Supply Chain Products Suite SQL-Server 12.2.2

12.2.2

References

102103

56474

31993

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

Vendor Advisory

20140228 CVE-2014-0372 - SQL Injection in Oracle Demantra

64758

64826

1029620

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.