CVE-2014-6499

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2.0, 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to WebLogic Tuxedo Connector.

Published: Oct 16, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-6499
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / fusion_middleware	12.1.1	12.1.1.x
oracle / fusion_middleware	10.0.2	10.0.2.x
oracle / fusion_middleware	12.1.3.0.0	12.1.3.0.0.x
oracle / fusion_middleware	10.3.6	10.3.6.x
oracle / fusion_middleware	12.1.2.0.0	12.1.2.0.0.x

http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
http://www.securityfocus.com/bid/70463

Vulnerability Database

289,784

CVE-2014-6499