Lucene search
HistoryOct 15, 2014 - 3:55 p.m.
CVE-2014-4278
cve-2014-4278
oracle
e-business suite
vulnerability
remote attackers
confidentiality
integrity
availability
oracle forms
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
5.9 Medium
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.5%
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Forms.
Affected configurations
Node
oraclee-business_suiteMatch12.0.6
ORoraclee-business_suiteMatch12.1.3
ORoraclee-business_suiteMatch12.2.2
ORoraclee-business_suiteMatch12.2.3
ORoraclee-business_suiteMatch12.2.4
Related
cvelist
cvelist
CVE-2014-4278
2014-10-15 15:15:00
canvas
canvas
Immunity Canvas: ORACLE_FORMS_RCE
2014-10-15 15:55:00
nvd
nvd
CVE-2014-4278
2014-10-15 15:55:06
prion
prion
Design/Logic Flaw
2014-10-15 15:55:00
openvas
openvas
Oracle E-Business Suite/Oracle Forms Remote Security Vulnerability
2014-11-13 00:00:00
nessus
nessus
Oracle E-Business Multiple Vulnerabilities (October 2014 CPU)
2014-10-17 00:00:00
securityvulns
securityvulns
Oracle / Sun / PeopleSoft / MySQL multiple security vulnerabilities
2014-11-03 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2014
2014-10-14 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
5.9 Medium
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.5%
Related for CVE-2014-4278