CVE-2014-6581 — MEDIUM (6.4)

Vulnerability Description

Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Extract/Load Programs.

CVSS Score

6.4

MEDIUM

AV:N/AC:L/Au:N/C:P/I:P/A:N

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Oracle	E-Business Suite	11.5.10.2

References

http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlPatchVendor Advisory
http://www.securitytracker.com/id/1031579
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.htmlPatchVendor Advisory
http://www.securitytracker.com/id/1031579

FAQ

What is CVE-2014-6581?

CVE-2014-6581 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote a...

How severe is CVE-2014-6581?

CVE-2014-6581 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-6581?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle E-Business Suite.