Vulnerabilities > CVE-2015-2652 - Remote Security vulnerability in Oracle E-Business Suite

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
oracle
nessus

Summary

Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.1, 12.1.2, 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect integrity via unknown vectors related to Web Management.

Nessus

NASL familyMisc.
NASL idORACLE_E-BUSINESS_CPU_JUL_2015.NASL
descriptionThe version of Oracle E-Business installed on the remote host is missing the July 2015 Oracle Critical Patch Update (CPU). It is, therefore, affected by affected by vulnerabilities in the following components : - Oracle Application Object Library (CVE-2015-2618) - Oracle Application Object Library (CVE-2015-4739) - Oracle Applications DBA (CVE-2015-4743) - Oracle Applications Framework (CVE-2015-1926) - Oracle Applications Framework (CVE-2015-2610) - Oracle Applications Framework (CVE-2015-2615) - Oracle Applications Framework (CVE-2015-4741) - Oracle Applications Manager (CVE-2015-4765) - Oracle HTTP Server (CVE-2014-3571) - Oracle Marketing (CVE-2015-2652) - Oracle Sourcing (CVE-2015-4728) - Oracle Web Applications Desktop Integrator (CVE-2015-2645) - Technology stack (CVE-2015-2630)
last seen2020-06-01
modified2020-06-02
plugin id84766
published2015-07-15
reporterThis script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/84766
titleOracle E-Business Multiple Vulnerabilities (July 2015 CPU)