Unspecified Vulnerability in Oracle E-Business Suite Affecting Customer Interaction History
CVE-2016-3512

8.2HIGH

Key Information:

Vendor
Oracle
Status
Customer Interaction History
Vendor
CVE Published:
21 July 2016

Summary

An unspecified vulnerability exists in the Oracle Customer Interaction History component of the Oracle E-Business Suite. This issue can enable remote attackers to compromise the confidentiality and integrity of sensitive information through vulnerabilities related to Function Security. Organizations using versions 12.1.1, 12.1.2, and 12.1.3 of the Oracle E-Business Suite should monitor their systems for potential exploitation and apply any necessary patches or mitigations.

References

http://www.securityfocus.com/bid/91852
vdb-entryx_refsource_BID
http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/91787
vdb-entryx_refsource_BID

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.