Unrated severityNVD Advisory· Published Oct 15, 2014· Updated May 6, 2026

CVE-2014-6554

Description

An unspecified vulnerability in the Oracle Access Manager Admin Console of Oracle Fusion Middleware allows remote authenticated users to compromise confidentiality and integrity.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An unspecified vulnerability in the Oracle Access Manager Admin Console of Oracle Fusion Middleware allows remote authenticated users to compromise confidentiality and integrity.

Vulnerability

An unspecified vulnerability exists in the Oracle Access Manager component of Oracle Fusion Middleware, specifically within the Admin Console. The affected versions are 11.1.2.1 and 11.1.2.2. The vulnerability is remotely exploitable by authenticated users via unknown vectors [1].

Exploitation

To exploit this vulnerability, an attacker must have valid user credentials and network access to the Oracle Access Manager Admin Console. The exact sequence of steps required is not disclosed in the available references, but the attack does not require any special privileges beyond authentication [1].

Impact

Successful exploitation could lead to unauthorized access to sensitive information (confidentiality) and partial modification of data (integrity). The impact is limited to the affected component's scope within the Oracle Fusion Middleware environment [1].

Mitigation

Oracle has released security patches as part of the October 2014 Critical Patch Update. Users should apply the appropriate patches for Oracle Fusion Middleware versions 11.1.2.1 and 11.1.2.2. No workarounds are documented in the available references [1].

References

About Secunia Research | Flexera

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Oracle Corporation/Fusion Middleware2 versions
cpe:2.3:a:oracle:fusion_middleware:11.1.2.1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:oracle:fusion_middleware:11.1.2.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:11.1.2.2.0:*:*:*:*:*:*:*
Oracle Corporation/Oracle Access Managerllm-fuzzy
Range: = 11.1.2.1, = 11.1.2.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.htmlnvdPatchVendor Advisory
secunia.com/advisories/61767nvd
www.securityfocus.com/bid/70494nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000