CVE-2014-0419

critical

Description

Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization SGD before 4.63 with December 2013 PSU, 4.71, 5.0 with December 2013 PSU, and 5.10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration Console and Workspace Web Applications.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/90367

http://www.securitytracker.com/id/1029610

http://www.securityfocus.com/bid/64902

http://www.securityfocus.com/bid/64758

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

http://osvdb.org/102110

Details

Source: Mitre, NVD

Published: 2014-01-15

Updated: 2017-08-29

Risk Information

CVSS v2

Base Score: 5.1

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical