E-Billing 6.1, 6.2 Security vulnerabilities of Apache Struts CVE-2014-0112 and CVE-2014-0113
(Doc ID 1682646.1)
Last updated on FEBRUARY 28, 2018
Applies to:Oracle Self-Service E-Billing Consumer Edition - Version 6.1 to 6.2 [Release 6]
Information in this document applies to any platform.
Is E-Billing 6.2 affected by Security vulnerabilities of Apache Struts CVE-2014-0112 and CVE-2014-0113?
CVE-2014-0113 - ClassLoader manipulation via CookieInterceptor when configured to accept all cookies.
Apache Struts 2 Documentation:
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document