2016 NATIONAL VULNERABILITY DATABASE
CVE-2016-3535
Summary: Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Remote Launch.
Published: 7/21/2016 6:13:31 AM
CVSS Severity: v3 - 8.2 HIGH v2 - 7.8 HIGH
CVE-2016-3534
Summary: Unspecified vulnerability in the Oracle Installed Base component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors related to Engineering Change Order.
Published: 7/21/2016 6:13:30 AM
CVSS Severity: v3 - 4.7 MEDIUM v2 - 4.3 MEDIUM
CVE-2016-3533
Summary: Unspecified vulnerability in the Oracle Knowledge Management component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors related to Search.
Published: 7/21/2016 6:13:29 AM
CVSS Severity: v3 - 4.7 MEDIUM v2 - 4.3 MEDIUM
CVE-2016-3532
Summary: Unspecified vulnerability in the Oracle Advanced Inbound Telephony component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to SDK client integration.
Published: 7/21/2016 6:13:28 AM
CVSS Severity: v3 - 8.2 HIGH v2 - 7.8 HIGH
CVE-2016-3531
Summary: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to PC / Notification.
Published: 7/21/2016 6:13:27 AM
CVSS Severity: v3 - 3.5 LOW v2 - 3.5 LOW
CVE-2016-3530
Summary: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors related to PGC / Import.
Published: 7/21/2016 6:13:25 AM
CVSS Severity: v3 - 7.1 HIGH v2 - 7.5 HIGH
CVE-2016-3529
Summary: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via vectors related to SDK, a different vulnerability than CVE-2016-3526 and CVE-2016-3560.
Published: 7/21/2016 6:13:24 AM
CVSS Severity: v3 - 5.8 MEDIUM v2 - 5.0 MEDIUM
CVE-2016-3528
Summary: Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect availability via vectors related to Expenses Admin Utilities.
Published: 7/21/2016 6:13:23 AM
CVE-2016-3527
Summary: Unspecified vulnerability in the Oracle Demand Planning component in Oracle Supply Chain Products Suite 12.1 and 12.2 allows remote attackers to affect confidentiality and integrity via vectors related to ODPDA Servlet.
Published: 7/21/2016 6:13:22 AM
CVE-2016-3526
Summary: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via vectors related to SDK, a different vulnerability than CVE-2016-3529 and CVE-2016-3560.
Published: 7/21/2016 6:13:21 AM
CVSS Severity: v3 - 7.5 HIGH v2 - 7.8 HIGH
CVE-2016-3525
Summary: Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality via vectors related to Cookie Management.
Published: 7/21/2016 6:13:20 AM
CVSS Severity: v3 - 5.9 MEDIUM v2 - 5.4 MEDIUM
CVE-2016-3524
Summary: Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Configuration.
Published: 7/21/2016 6:13:19 AM
CVSS Severity: v3 - 5.4 MEDIUM v2 - 5.5 MEDIUM
CVE-2016-3523
Summary: Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors related to Application Service.
Published: 7/21/2016 6:13:18 AM
CVSS Severity: v3 - 4.7 MEDIUM v2 - 4.3 MEDIUM
CVE-2016-3522
Summary: Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Application Service.
Published: 7/21/2016 6:13:16 AM
CVSS Severity: v3 - 8.2 HIGH v2 - 8.5 HIGH
CVE-2016-3521
Summary: Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Types.
Published: 7/21/2016 6:13:15 AM
CVSS Severity: v3 - 6.5 MEDIUM v2 - 6.8 MEDIUM
CVE-2016-3520
Summary: Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote administrators to affect confidentiality via vectors related to AOL Diagnostic tests.
Published: 7/21/2016 6:13:14 AM
CVSS Severity: v3 - 4.9 MEDIUM v2 - 6.8 MEDIUM
CVE-2016-3519
Summary: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via vectors related to PC / Get Shortcut.
Published: 7/21/2016 6:13:13 AM
CVSS Severity: v3 - 6.1 MEDIUM v2 - 4.3 MEDIUM
CVE-2016-3518
Summary: Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.
Published: 7/21/2016 6:13:12 AM
CVSS Severity: v3 - 6.5 MEDIUM v2 - 6.8 MEDIUM
CVE-2016-3517
Summary: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to PC / Get Shortcut.
Published: 7/21/2016 6:13:11 AM
CVSS Severity: v3 - 4.3 MEDIUM v2 - 4.3 MEDIUM
CVE-2016-3516
Summary: Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors related to GUI, a different vulnerability than CVE-2016-3514.
Published: 7/21/2016 6:13:10 AM
CVSS Severity: v3 - 3.1 LOW v2 - 4.0 MEDIUM