CVE-2014-2399

EPSS

30.47%V4

Vector

Network

Published

2014-04-15
23h00 +00:00

Modified

2018-10-09
16h57 +00:00

Official links

CVE.org

NVD

Notifications for a CVE

Stay informed of any changes for a specific CVE.

Notifications manage

List of Notifications

Notifications for a CVE

Stay informed of any changes for a specific CVE.

Criteria applied when sending the alert: compared with the last alert sent + differences in CISA, EPSS, CVSS, CWE, Solutions, CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

Specified here a CVE ID as CVE-2025-1234

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CVE Descriptions

Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 2.2.2 allows remote attackers to affect integrity via unknown vectors related to Oracle Endeca Information Discovery (Formerly Latitude), a different vulnerability than CVE-2014-2400.

CVE Informations

Related Weaknesses

CWE-ID	Weakness Name	Source
CWE Other	No informations.

Metrics

Metrics	Score	Severity	CVSS Vector	Source
V2	4.3		AV:N/AC:M/Au:N/C:N/I:P/A:N	nvd@nist.gov

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

Date	EPSS V0	EPSS V1	EPSS V2 (> 2022-02-04)	EPSS V3 (> 2025-03-07)	EPSS V4 (> 2025-03-17)
2022-02-06	–	–	13.32%	–	–
2022-04-03	–	–	13.32%	–	–
2022-07-17	–	–	13.32%	–	–
2022-07-24	–	–	13.32%	–	–
2022-09-18	–	–	13.32%	–	–
2022-10-02	–	–	12.4%	–	–
2023-03-12	–	–	–	37.75%	–
2023-03-26	–	–	–	45.43%	–
2023-05-14	–	–	–	53.15%	–
2024-01-14	–	–	–	52.83%	–
2024-02-25	–	–	–	52.83%	–
2024-03-03	–	–	–	65.2%	–
2024-04-14	–	–	–	63.87%	–
2024-06-02	–	–	–	63.87%	–
2024-07-21	–	–	–	65.32%	–
2024-09-08	–	–	–	67.99%	–
2024-11-03	–	–	–	68.4%	–
2024-12-22	–	–	–	61.78%	–
2025-01-05	–	–	–	58.03%	–
2025-03-09	–	–	–	54.2%	–
2025-01-19	–	–	–	58.03%	–
2025-03-09	–	–	–	54.2%	–
2025-03-18	–	–	–	–	21%
2025-03-30	–	–	–	–	30.47%
2025-03-30	–	–	–	–	30.47,%

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

EPSS First.org

Date	Percentile
2022-02-06	91%
2022-04-03	95%
2022-07-17	96%
2022-07-24	95%
2022-09-18	96%
2022-10-02	95%
2023-03-12	97%
2023-03-26	97%
2023-05-14	97%
2024-01-14	97%
2024-02-25	98%
2024-03-03	98%
2024-04-14	98%
2024-06-02	98%
2024-07-21	98%
2024-09-08	98%
2024-11-03	98%
2024-12-22	98%
2025-01-05	98%
2025-03-09	98%
2025-01-19	98%
2025-03-09	98%
2025-03-18	95%
2025-03-30	96%
2025-03-30	96%

Exploit information

Exploit Database EDB-ID : 33897

Publication date : 2014-06-26 22h00 +00:00
Author : RedTeam Pentesting
EDB Verified : Yes

Advisory: Endeca Latitude Cross-Site Request Forgery RedTeam Pentesting discovered a Cross-Site Request Forgery (CSRF) vulnerability in Endeca Latitude. Using this vulnerability, an attacker might be able to change several different settings of the Endeca Latitude instance or disable it entirely. Details ======= Product: Endeca Latitude Affected Versions: 2.2.2, potentially others Fixed Versions: N/A Vulnerability Type: Cross-Site Request Forgery Security Risk: low Vendor URL: N/A Vendor Status: decided not to fix Advisory URL: https://www.redteam-pentesting.de/advisories/rt-sa-2013-002 Advisory Status: published CVE: CVE-2014-2399 CVE URL: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2399 Introduction ============ Endeca Latitude is an enterprise data discovery platform for advanced, yet intuitive, exploration and analysis of complex and varied data. Information is loaded from disparate source systems and stored in a faceted data model that dynamically supports changing data. This integrated and enriched data is made available for search, discovery, and analysis via interactive and configurable applications. (from the vendor's homepage) More Details ============ Endeca Latitude offers administrators the ability to perform different administrative and configuration operations by accessing URLs. These URLs are not secured by a randomly generated token and therefore are prone to Cross-Site Request Forgery attacks. For example by accessing the URL http://example.com/admin?op=exit an administrator can shut down the Endeca Latitude instance. Several other URLs exist (as documented at [1] and [2]) which can be used to trigger operations such as flushing cashes or changing the logging settings. Proof of Concept ================ An attacker might prepare a website, which can trigger arbitrary functionality (see [1] and [2]) of an Endeca Latitude instance if someone opens the attacker's website in a browser that can reach Endeca Latitude. An easy way to implement this is to embed a hidden image into an arbitrary website which uses the corresponding URL as its source: <img src="http://example.com/admin?op=exit" style="display:hidden" /> <img src="http://example.com/config?op=log-disable" style="display:hidden" /> [...] Workaround ========== The vendor did not update the vulnerable software, but recommends to configure all installations to require mutual authentication using TLS certificates for both servers and clients, while discouraging users from installing said client certificates in browsers. Fix === Not available. The vendor did not update the vulnerable software to remedy this issue. Security Risk ============= The vulnerability can enable attackers to be able to interact with an Endeca Latitude instance in different ways. Possible attacks include the changing of settings as well as denying service by shutting down a running instance. Attackers mainly benefit from this vulnerability if the instance is not already available to them, but for example only to restricted IP addresses or after authentication. Since this makes it harder to identify potential target systems and the attack mainly allows to disturb the service until it is re-started, the risk of this vulnerability is considered to be low. Timeline ======== 2013-10-06 Vulnerability identified 2013-10-08 Customer approved disclosure to vendor 2013-10-15 Vendor notified 2013-10-17 Vendor responded that investigation/fixing is in progress 2014-02-24 Vendor responded that bug is fixed and scheduled for a future CPU 2014-03-13 Vendor responded with additional information about a potential workaround 2014-04-15 Vendor releases Critical Patch Update Advisory with little information on the proposed fix 2014-04-16 More information requested from vendor 2014-05-02 Vendor responds with updated information 2014-06-25 Advisory released References ========== [1] http://docs.oracle.com/cd/E29220_01/mdex.222/admin/toc.htm#List%20of%20administrative%20operations [2] http://docs.oracle.com/cd/E29220_01/mdex.222/admin/toc.htm#List%20of%20supported%20logging%20variables RedTeam Pentesting GmbH ======================= RedTeam Pentesting offers individual penetration tests, short pentests, performed by a team of specialised IT-security experts. Hereby, security weaknesses in company networks or products are uncovered and can be fixed immediately. As there are only few experts in this field, RedTeam Pentesting wants to share its knowledge and enhance the public knowledge with research in security related areas. The results are made available as public security advisories. More information about RedTeam Pentesting can be found at https://www.redteam-pentesting.de. -- RedTeam Pentesting GmbH Tel.: +49 241 510081-0 Dennewartstr. 25-27 Fax : +49 241 510081-99 52068 Aachen https://www.redteam-pentesting.de Germany Registergericht: Aachen HRB 14004 Geschäftsführer: Patrick Hof, Jens Liebchen