VIR Vulnerability Intelligence Relay

CVE-2014-6581

medium
Published 2015-01-21 · Modified 2026-05-06
CVSS v3
CVSS v2
6.4
VIR risk
6.4

Description

Unspecified vulnerability in the Oracle Customer Intelligence component in Oracle E-Business Suite 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Extract/Load Programs.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

Application impact
VendorProductVersionsFixed
oracle oraclee-business_suite11.5.10.2
oracle oraclee-business_suite12.0.4
oracle oraclee-business_suite12.0.5
oracle oraclee-business_suite12.0.6
oracle oraclee-business_suite12.1.1
oracle oraclee-business_suite12.1.2
oracle oraclee-business_suite12.1.3
oracle oraclee-business_suite12.2.2
oracle oraclee-business_suite12.2.3
oracle oraclee-business_suite12.2.4

References

Verify integrity in audit chain (admin only). AS-IS.