Vulnerabilities > CVE-2015-4874 - Local Security vulnerability in Oracle Enterprise Manager Grid Control 12.1.0.4/12.1.0.5
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.4 and 12.1.0.5 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Agent Next Gen.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Nessus
| NASL family | Misc. |
| NASL id | ORACLE_ENTERPRISE_MANAGER_OCT_2015_CPU.NASL |
| description | The version of Oracle Enterprise Manager Agent installed on the remote host is affected by multiple vulnerabilities : - An unspecified vulnerability exists in the Agent Next Gen subcomponent that a remote attacker can exploit to impact confidentiality and integrity. No other details are available. (CVE-2015-4859) - An unspecified vulnerability exists in the Agent Next Gen subcomponent that a local attacker can exploit to impact confidentiality, integrity, and availability. No other details are available. (CVE-2015-4874) - An unspecified vulnerability exists in the Agent Next Gen subcomponent that a remote attacker can exploit to impact availability. No other details are available. (CVE-2015-4875) |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 86574 |
| published | 2015-10-23 |
| reporter | This script is Copyright (C) 2015-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/86574 |
| title | Oracle Enterprise Manager Agent Unspecified Vulnerabilities (October 2015 CPU) |