2016 National Vulnerability Database

2016 VULNERABILITY DATABASE

CVE-2016-3493

Summary: Unspecified vulnerability in the Hyperion Financial Reporting component in Oracle Hyperion 11.1.2.4 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Security Models.

Published: 7/21/2016 6:12:46 AM

CVSS Severity: v3 - 9.8 CRITICAL v2 - 10.0 HIGH

CVE-2016-3491

Summary: Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Wireless Framework.

Published: 7/21/2016 6:12:45 AM

CVSS Severity: v3 - 8.2 HIGH v2 - 8.5 HIGH

CVE-2016-3490

Summary: Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.3.0, 6.3.1, 6.3.2, 6.3.3, 6.3.4, 6.3.5, 6.3.6, 6.3.7, 6.4.0, and 6.4.1 allows remote authenticated users to affect confidentiality via vectors related to Database.

Published: 7/21/2016 6:12:44 AM

CVSS Severity: v3 - 3.0 LOW v2 - 3.5 LOW

CVE-2016-3489

Summary: Unspecified vulnerability in the Data Pump Import component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

Published: 7/21/2016 6:12:43 AM

CVSS Severity: v3 - 6.7 MEDIUM v2 - 7.2 HIGH

CVE-2016-3488

Summary: Unspecified vulnerability in the DB Sharding component in Oracle Database Server 12.1.0.2 allows local users to affect integrity via unknown vectors.

Published: 7/21/2016 6:12:42 AM

CVSS Severity: v3 - 4.4 MEDIUM v2 - 4.9 MEDIUM

CVE-2016-3487

Summary: Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Published: 7/21/2016 6:12:41 AM

CVSS Severity: v3 - 8.1 HIGH v2 - 10.0 HIGH

CVE-2016-3486

Summary: Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: FTS.

Published: 7/21/2016 6:12:40 AM

CVSS Severity: v3 - 6.5 MEDIUM v2 - 6.8 MEDIUM

CVE-2016-3485

Summary: Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows local users to affect integrity via vectors related to Networking.

Published: 7/21/2016 6:12:39 AM

CVSS Severity: v3 - 2.9 LOW v2 - 2.1 LOW

CVE-2016-3484

Summary: Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality and integrity via unknown vectors.

Published: 7/21/2016 6:12:38 AM

CVSS Severity: v3 - 3.4 LOW v2 - 3.2 LOW

CVE-2016-3483

Summary: Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and availability via vectors related to File Processing.

Published: 7/21/2016 6:12:37 AM

CVSS Severity: v3 - 7.2 HIGH v2 - 6.4 MEDIUM

CVE-2016-3482

Summary: Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.9 and 12.1.3.0 allows remote attackers to affect confidentiality via vectors related to SSL/TLS Module.

Published: 7/21/2016 6:12:36 AM

CVSS Severity: v3 - 3.7 LOW v2 - 5.0 MEDIUM

CVE-2016-3481

Summary: Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote authenticated users to affect availability via vectors related to Web.

Published: 7/21/2016 6:12:35 AM

CVSS Severity: v3 - 7.7 HIGH v2 - 4.0 MEDIUM

CVE-2016-3480

Summary: Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 and 4.3 allows local users to affect confidentiality via vectors related to HA for Postgresql.

Published: 7/21/2016 6:12:34 AM

CVSS Severity: v3 - 4.4 MEDIUM v2 - 4.9 MEDIUM

CVE-2016-3479

Summary: Unspecified vulnerability in the Portable Clusterware component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote attackers to affect availability via unknown vectors.

Published: 7/21/2016 6:12:32 AM

CVSS Severity: v3 - 7.5 HIGH v2 - 7.8 HIGH

CVE-2016-3478

Published: 7/21/2016 6:12:31 AM

CVSS Severity: v3 - 6.1 MEDIUM v2 - 4.3 MEDIUM

CVE-2016-3477

Summary: Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Parser.

Published: 7/21/2016 6:12:30 AM

CVSS Severity: v3 - 8.1 HIGH v2 - 7.2 HIGH

CVE-2016-3476

Summary: Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote attackers to affect confidentiality and integrity via vectors related to Information Manager Console.

Published: 7/21/2016 6:12:29 AM

CVSS Severity: v3 - 6.5 MEDIUM v2 - 6.4 MEDIUM

CVE-2016-3475

Summary: Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote authenticated users to affect confidentiality via vectors related to Information Manager Console.

Published: 7/21/2016 6:12:28 AM

CVSS Severity: v3 - 4.3 MEDIUM v2 - 4.0 MEDIUM

CVE-2016-3474

Summary: Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality via vectors related to Security.

Published: 7/21/2016 6:12:27 AM

CVSS Severity: v3 - 3.7 LOW v2 - 4.3 MEDIUM

CVE-2016-3472

Summary: Unspecified vulnerability in the Siebel Engineering - Installer and Deployment component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Web Server.

Published: 7/21/2016 6:12:26 AM

CVSS Severity: v3 - 5.7 MEDIUM v2 - 3.5 LOW

<<< New Older >>>