Local Vulnerability in Oracle Identity Manager of Oracle Fusion Middleware
CVE-2016-5506

3.1LOW

Key Information:

Vendor
Oracle
Status
Identity Manager
Vendor
CVE Published:
25 October 2016

Summary

A vulnerability exists in the Oracle Identity Manager component of Oracle Fusion Middleware, which allows local users to impact the confidentiality and integrity of the system. This vulnerability stems from issues related to the application server, enabling unauthorized access or manipulation of sensitive information by users with local access.

References

http://www.oracle.com/technetwork/security-advisory/cpuoc...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1037051
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/93648
vdb-entryx_refsource_BID

CVSS V3.1

Score:
3.1
Severity:
LOW
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.