CVE-2016-5562

7.6HIGH

Key Information:

Vendor: Oracle
Status: Iprocurement
Vendor: CVE Published:; 25 October 2016

Summary

Unspecified vulnerability in the Oracle iProcurement component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

References

http://www.securityfocus.com/bid/93739

vdb-entryx_refsource_BID

http://www.oracle.com/technetwork/security-advisory/cpuoc...

x_refsource_CONFIRM

http://www.securitytracker.com/id/1037038

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Oct 25, 2016
Vulnerability Reserved
Jun 16, 2016