CVE-2014-6556 — Oracle E-business Suite vulnerability

4 documents4 sources

Severity

4.6MEDIUMNVD

EPSS

0.4%

top 40.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle E-business Suite

Timeline

PublishedJan 21

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to AD_DDL.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDoracle/e-business_suite6 versions+5

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-xjp6-jcwj-9qp5: Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11↗2022-05-17

▶

CVEList

CVE-2014-6556: Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 11↗2015-01-21

▶

💬Community

Bugzilla

CVE-2014-0243 check-mk: arbitrary file disclosure flaw as root↗2014-05-27

▶