CVE-2014-4235

Severity

35%

Complexity

68%

Confidentiality

48%

Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows remote authenticated users to affect integrity via unknown vectors.

Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows remote authenticated users to affect integrity via unknown vectors.

CVSS 2.0 Base Score 3.5. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:S/C:N/I:P/A:N).

Overview

Type

Oracle E-Business Suite

First reported 10 years ago

2014-07-17 11:17:00

Last updated 6 years ago

2018-10-09 19:48:00

Affected Software

Oracle E-Business Suite 11i 11.5.10.2

11.5.10.2

Oracle E-Business Suite 12.0.6

12.0.6

Oracle E-Business Suite 12.1.3

12.1.3

Oracle E-Business Suite 12.2.2

12.2.2

Oracle E-Business Suite 12.2.3

12.2.3

References

20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities

http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html

Vendor Advisory

20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities

68647

http://www.vmware.com/security/advisories/VMSA-2014-0012.html

oracle-cpujul2014-cve20144235(94572)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.