Unspecified Vulnerability in Oracle Agile PLM Component
CVE-2016-3519

6.1MEDIUM

Key Information:

Vendor

Oracle
Status
Agile Product Lifecycle Management Framework
Vendor
CVE Published:
21 July 2016

What is CVE-2016-3519?

The vulnerability in Oracle's Agile PLM component allows remote attackers to potentially compromise both the confidentiality and integrity of the affected systems. Exploitation may occur through specific vectors associated with the PC / Get Shortcut functionality, underscoring the urgency for organizations using Oracle Supply Chain Products to assess their security posture and apply necessary mitigations.

References

http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/91993
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1036402
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.