CVE-2014-4278

EUVD-2014-4207
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Forms.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
Affected Products (NVD)
VendorProductVersion
oraclee-business_suite
12.0.6
oraclee-business_suite
12.1.3
oraclee-business_suite
12.2.2
oraclee-business_suite
12.2.3
oraclee-business_suite
12.2.4
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/61781
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www.securityfocus.com/bid/70475
http://www.securitytracker.com/id/1031042
http://secunia.com/advisories/61781
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www.securityfocus.com/bid/70475
http://www.securitytracker.com/id/1031042