Remote confidentiality vulnerability in Oracle Agile PLM component
CVE-2016-5527

5.9MEDIUM

Key Information:

Vendor: Oracle
Status: Agile Product Lifecycle Management Framework
Vendor: CVE Published:; 25 October 2016

What is CVE-2016-5527?

An unspecified vulnerability in the Oracle Agile Product Lifecycle Management (PLM) component of Oracle Supply Chain Products Suite versions 9.3.4 and 9.3.5 allows remote attackers to potentially compromise confidentiality through unknown vectors. The nature of this vulnerability presents risks that may affect the confidentiality of sensitive information, and it should be addressed promptly to mitigate potential breaches.

References

http://www.oracle.com/technetwork/security-advisory/cpuoc...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/93665

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 25, 2016
Vulnerability Reserved
Jun 16, 2016