CVE-2014-6525 — LOW (3.5) — White Hats Nepal

Vulnerability Description

Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect integrity via unknown vectors related to Templates.

CVSS Score

3.5

LOW

AV:N/AC:M/Au:S/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Oracle	E-Business Suite	11.5.10.2

References

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlPatchVendor Advisory
http://www.securitytracker.com/id/1031579
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlPatchVendor Advisory
http://www.securitytracker.com/id/1031579

FAQ

What is CVE-2014-6525?

CVE-2014-6525 is a vulnerability with a CVSS score of 3.5 (LOW). Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users...

How severe is CVE-2014-6525?

CVE-2014-6525 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-6525?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle E-Business Suite.