Unspecified Vulnerability in Oracle Siebel CRM UI Framework Component
CVE-2016-5463

4.1MEDIUM

Key Information:

Vendor
Oracle
Status
Siebel Ui Framework
Vendor
CVE Published:
21 July 2016

Summary

An unspecified vulnerability exists in the Siebel UI Framework component of Oracle Siebel CRM, affecting versions 8.1.1, 8.2.2, and several IP releases. This vulnerability enables remote authenticated users to potentially alter the integrity of the system through manipulation techniques associated with the SWSE Server. Further actions and mitigations may be required to secure the application against exploitation.

References

http://www.securitytracker.com/id/1036400
vdb-entryx_refsource_SECTRACK
http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/91988
vdb-entryx_refsource_BID

CVSS V3.1

Score:
4.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.