CVE-2014-6479 — Oracle E-business Suite vulnerability

5 documents4 sources

Severity

4.0MEDIUMNVD

EPSS

0.3%

top 50.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle E-business Suite

Timeline

PublishedOct 15

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote authenticated users to affect confidentiality via vectors related to OC4J Configuration.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

▶NVDoracle/e-business_suite11.5.10.2, 12.0.6, 12.1.3+2

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-42g6-jq53-2pfr: Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite 11↗2022-05-17

▶

CVEList

CVE-2014-6479: Unspecified vulnerability in the Oracle Applications Technology component in Oracle E-Business Suite 11↗2014-10-15

▶

💬Community

Bugzilla

CVE-2013-6483 CVE-2013-6482 CVE-2013-6481 CVE-2013-6487 CVE-2013-6485 CVE-2013-6484 CVE-2013-6489 CVE-2014-0020 CVE-2013-6477 CVE-2012-6152 CVE-2013-6478 CVE-2013-6479 CVE-2013-6490 pidgin: various fl↗2014-01-29

▶

Bugzilla

CVE-2013-6479 pidgin: DoS when parsing certain HTTP response headers↗2014-01-23

▶