Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.2, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality via vectors related to REST Interface.
http://www.securitytracker.com/id/1031042
http://www.securityfocus.com/bid/70461
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html