Vulnerability in Oracle Enterprise Manager Grid Control on OS Provisioning
CVE-2016-3494

6.5MEDIUM

Key Information:

Vendor

Oracle
Status
Enterprise Manager Ops Center
Vendor
CVE Published:
21 July 2016

What is CVE-2016-3494?

An unspecified vulnerability exists within the Enterprise Manager Ops Center component of Oracle Enterprise Manager Grid Control. This flaw allows remote attackers to potentially disrupt the availability of the service through OS Provisioning-related vectors, raising concerns about the integrity and reliability of systems managed by this product. It is crucial for users of the affected versions to apply the latest security updates to mitigate the risk associated with this vulnerability.

References

http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1036406
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/91872
vdb-entryx_refsource_BID

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.