CVE-2014-6472

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via vectors related to LOV, a different vulnerability than CVE-2014-6539.

Published: Oct 15, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-6472
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / e-business_suite	12.0.6	12.0.6.x
oracle / e-business_suite	12.2.3	12.2.3.x
oracle / e-business_suite	11.5.10.2	11.5.10.2.x
oracle / e-business_suite	12.1.3	12.1.3.x
oracle / e-business_suite	12.2.2	12.2.2.x
oracle / e-business_suite	12.2.4	12.2.4.x

http://secunia.com/advisories/61725
http://secunia.com/advisories/61781
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www.securityfocus.com/bid/70457
http://www.securitytracker.com/id/1031042

Vulnerability Database

290,278

CVE-2014-6472