2016 VULNERABILITY DATABASE
CVE-2016-3471
Summary: Unspecified vulnerability in Oracle MySQL 5.5.45 and earlier and 5.6.26 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Option.
Published: 7/21/2016 6:12:25 AM
CVSS Severity: v3 - 7.5 HIGH v2 - 7.1 HIGH
CVE-2016-3470
Summary: Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.4.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to Install.
Published: 7/21/2016 6:12:24 AM
CVSS Severity: v3 - 7.1 HIGH v2 - 7.5 HIGH
CVE-2016-3469
Summary: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows local users to affect confidentiality via vectors related to Services.
Published: 7/21/2016 6:12:23 AM
CVSS Severity: v3 - 3.3 LOW v2 - 2.1 LOW
CVE-2016-3468
Summary: Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Install.
Published: 7/21/2016 6:12:21 AM
CVSS Severity: v3 - 9.8 CRITICAL v2 - 10.0 HIGH
CVE-2016-3467
Summary: Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect availability via unknown vectors.
Published: 7/21/2016 6:12:20 AM
CVSS Severity: v3 - 5.8 MEDIUM v2 - 5.0 MEDIUM
CVE-2016-3459
Summary: Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB.
Published: 7/21/2016 6:12:19 AM
CVSS Severity: v3 - 4.9 MEDIUM v2 - 4.0 MEDIUM
CVE-2016-3458
Summary: Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; and Java SE Embedded 8u91 allows remote attackers to affect integrity via vectors related to CORBA.
Published: 7/21/2016 6:12:18 AM
CVSS Severity: v3 - 4.3 MEDIUM v2 - 4.3 MEDIUM
CVE-2016-3453
Summary: Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability via vectors related to Kernel.
Published: 7/21/2016 6:12:17 AM
CVSS Severity: v3 - 5.5 MEDIUM v2 - 4.9 MEDIUM
CVE-2016-3452
Summary: Unspecified vulnerability in Oracle MySQL 5.5.48 and earlier, 5.6.29 and earlier, and 5.7.10 and earlier allows remote attackers to affect confidentiality via vectors related to Server: Security: Encryption.
Published: 7/21/2016 6:12:16 AM
CVSS Severity: v3 - 3.7 LOW v2 - 4.3 MEDIUM
CVE-2016-3451
Summary: Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect integrity via vectors related to Web.
Published: 7/21/2016 6:12:15 AM
CVSS Severity: v3 - 4.7 MEDIUM v2 - 4.3 MEDIUM
CVE-2016-3450
Summary: Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-5460 and CVE-2016-5466.
Published: 7/21/2016 6:12:14 AM
CVSS Severity: v3 - 3.7 LOW v2 - 4.3 MEDIUM
CVE-2016-3448
Summary: Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect confidentiality and integrity via unknown vectors.
Published: 7/21/2016 6:12:12 AM
CVSS Severity: v3 - 6.1 MEDIUM v2 - 5.8 MEDIUM
CVE-2016-3446
Summary: Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Analytics Web Administration.
Published: 7/21/2016 6:12:11 AM
CVSS Severity: v3 - 8.3 HIGH v2 - 7.5 HIGH
CVE-2016-3445
Summary: Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.3.0 allows remote attackers to affect availability via vectors related to Web Container.
Published: 7/21/2016 6:12:10 AM
CVSS Severity: v3 - 5.3 MEDIUM v2 - 5.0 MEDIUM
CVE-2016-3444
Summary: Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Install.
Published: 7/21/2016 6:12:09 AM
CVSS Severity: v3 - 9.8 CRITICAL v2 - 10.0 HIGH
CVE-2016-3440
Summary: Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer.
Published: 7/21/2016 6:12:07 AM
CVSS Severity: v3 - 7.7 HIGH v2 - 4.0 MEDIUM
CVE-2016-3433
Summary: Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Analytics Web Administration.
Published: 7/21/2016 6:12:05 AM
CVSS Severity: v3 - 5.4 MEDIUM v2 - 4.9 MEDIUM
CVE-2016-3432
Summary: Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Web Server.
Published: 7/21/2016 6:12:03 AM
CVSS Severity: v3 - 5.4 MEDIUM v2 - 4.9 MEDIUM
CVE-2016-3424
Summary: Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Optimizer.
Published: 7/21/2016 6:12:02 AM
CVSS Severity: v3 - 4.9 MEDIUM v2 - 4.0 MEDIUM
CVE-2016-0635
Summary: Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2; the Oracle Health Sciences Information Manager component in Oracle Health Sciences Applications 1.2.8.3, 2.0.2.3, and 3.0.1.0; the Oracle Healthcare Master Person Index component in Oracle Health Sciences Applications 2.0.12, 3.0.0, and 4.0.1; the Oracle Documaker component in Oracle Insurance Applications before 12.5; the Oracle Insurance Calculation Engine component in Oracle Insurance Applications 9.7.1, 10.1.2, and 10.2.2; the Oracle Insurance Policy Administration J2EE and Oracle Insurance Rules Palette components in Oracle Insurance Applications 9.6.1, 9.7.1, 10.0.1, 10.1.2, 10.2.0, and 10.2.2; the Oracle Retail Integration Bus component in Oracle Retail Applications 15.0; the Oracle Retail Order Broker component in Oracle Retail Applications 5.1, 5.2, and 15.0; the Primavera Contract Management component in Oracle Primavera Products Suite 14.2; and the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.2, 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.
Published: 7/21/2016 6:12:00 AM