Remote Code Execution Vulnerability in Oracle Fusion Middleware ADF Faces
CVE-2015-4909

Currently unrated

Key Information:

Vendor: Oracle
Status: Fusion Middleware
Vendor: CVE Published:; 22 October 2015

What is CVE-2015-4909?

An unspecified vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware 11.1.2.4.0, 12.1.2.0.0, and 12.1.3.0.0 enables remote attackers to compromise system integrity through specific vectors linked to ADF Faces. Successful exploitation may allow unauthorized actions on the system, undermining its security.

References

http://www.oracle.com/technetwork/topics/security/cpuoct2...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1033898

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 22, 2015
Vulnerability Reserved
Jun 24, 2015