CVE-2014-6572

EUVD-2014-6451
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors related to List of Values.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 53%
Affected Products (NVD)
VendorProductVersion
oraclee-business_suite
12.0.4
oraclee-business_suite
12.0.5
oraclee-business_suite
12.0.6
oraclee-business_suite
12.1.1
oraclee-business_suite
12.1.2
oraclee-business_suite
12.1.3
oraclee-business_suite
12.2.2
oraclee-business_suite
12.2.3
oraclee-business_suite
12.2.4
𝑥
= Vulnerable software versions
References
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.securitytracker.com/id/1031579
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
http://www.securitytracker.com/id/1031579