CVE-2014-4278 — Oracle E-business Suite vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.2%

top 20.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle E-business Suite

Timeline

PublishedOct 15

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Forms.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDoracle/e-business_suite5 versions+4

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-x2p6-jhvj-44vf: Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12↗2022-05-17

▶

CVEList

CVE-2014-4278: Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12↗2014-10-15

▶