CVE-2015-4865 — Oracle E-business Suite vulnerability

3 documents3 sources

Severity

2.1LOWNVD

EPSS

0.2%

top 61.84%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle E-business Suite

Timeline

PublishedOct 21

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality via vectors related to Business Objects - BC4J.

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDoracle/e-business_suite12.1.3, 12.2.3, 12.2.4+2

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-c6xp-8fqv-r682: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12↗2022-05-17

▶

CVEList

CVE-2015-4865: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12↗2015-10-21

▶