7.5

CVE-2014-4278

Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Oracle Forms.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
OracleE-business Suite Version12.0.6
OracleE-business Suite Version12.1.3
OracleE-business Suite Version12.2.2
OracleE-business Suite Version12.2.3
OracleE-business Suite Version12.2.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 10.44% 0.952
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
Patch
Vendor Advisory
http://secunia.com/advisories/61781
http://www.securityfocus.com/bid/70475
http://www.securitytracker.com/id/1031042