CVE-2014-4235

Unspecified vulnerability in the Oracle iStore component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, and 12.2.3 allows remote authenticated users to affect integrity via unknown vectors.

Published: Jul 17, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-4235
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.5
AV:N/AC:M/Au:S/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / e-business_suite	12.0.6	12.0.6.x
oracle / e-business_suite	12.2.3	12.2.3.x
oracle / e-business_suite	11.5.10.2	11.5.10.2.x
oracle / e-business_suite	12.1.3	12.1.3.x
oracle / e-business_suite	12.2.2	12.2.2.x

http://seclists.org/fulldisclosure/2014/Dec/23
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
http://www.securityfocus.com/archive/1/534161/100/0/threaded
http://www.securityfocus.com/bid/68647
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/94572

Vulnerability Database

290,278

CVE-2014-4235