Local Vulnerability in Oracle Siebel CRM Affecting Email Integrity
CVE-2016-0674

4.4MEDIUM

Key Information:

Vendor: Oracle
Status: Siebel Core-common Components
Vendor: CVE Published:; 21 April 2016

Summary

An unspecified vulnerability in the Oracle Siebel CRM's Core - Common Components can potentially allow local users to compromise the confidentiality and integrity of the system via specific manipulation related to email functionalities. This risk underlines the importance of safeguarding local access to the application to prevent unauthorized actions that may lead to data exposure or manipulation.

References

http://www.securitytracker.com/id/1035598

vdb-entryx_refsource_SECTRACK

http://www.oracle.com/technetwork/security-advisory/cpuap...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 21, 2016
Vulnerability Reserved
Dec 9, 2015