Remote Information Disclosure Vulnerability in Oracle Siebel CRM
CVE-2016-3450

3.7LOW

Key Information:

Vendor

Oracle
Status
Siebel Core-server Framework
Vendor
CVE Published:
21 July 2016

What is CVE-2016-3450?

An unspecified vulnerability exists in the Siebel Core - Server Framework component of Oracle Siebel CRM. This issue allows remote attackers to potentially compromise the confidentiality of sensitive information. It is important to note that this vulnerability is distinct from others such as CVE-2016-5460 and CVE-2016-5466, indicating specific attack vectors associated with Services within the affected product's framework.

References

http://www.securitytracker.com/id/1036400
vdb-entryx_refsource_SECTRACK
http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/91920
vdb-entryx_refsource_BID

CVSS V3.1

Score:
3.7
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.