Unspecified Vulnerability in Oracle E-Business Suite by Oracle
CVE-2016-5567

6.5MEDIUM

Key Information:

Vendor

Oracle
Status
Applications Dba
Vendor
CVE Published:
25 October 2016

What is CVE-2016-5567?

An unspecified vulnerability exists within the Oracle Applications DBA component of Oracle E-Business Suite versions 12.1.3 and 12.2.3 through 12.2.6. This flaw enables remote administrators to compromise both confidentiality and integrity by exploiting weaknesses related to AD Utilities. It is crucial for organizations using affected versions to apply the appropriate patches and follow best security practices to mitigate potential risks.

References

http://www.securityfocus.com/bid/93747
vdb-entryx_refsource_BID
http://www.oracle.com/technetwork/security-advisory/cpuoc...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1037038
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.