Unrated severityNVD Advisory· Published Apr 16, 2014· Updated Jun 17, 2026

CVE-2014-2408

Description

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to the "Grant Any Object Privilege."

Affected products

Oracle Corporation/Database Server4 versions
cpe:2.3:a:oracle:database_server:11.1.0.7:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:database_server:11.1.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:11.2.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:11.2.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:database_server:12.1.0.1:*:*:*:*:*:*:*
Oracle Corporation/Oracle Database Serverllm-fuzzy
Range: 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1

Patches

Vulnerability mechanics

References

www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.htmlnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000