Remote Access Vulnerability in Oracle E-Business Suite
CVE-2016-5595

8.2HIGH

Key Information:

Vendor
Oracle
Status
Customer Interaction History
Vendor
CVE Published:
25 October 2016

Summary

An unspecified vulnerability exists in the Oracle Customer Interaction History component of Oracle E-Business Suite versions 12.1.1 through 12.1.3, as well as versions 12.2.3 and 12.2.4. This flaw allows remote attackers to potentially compromise the confidentiality and integrity of sensitive information via unknown attack vectors. Mitigating this vulnerability is critical to enhance the security posture of impacted systems and protect sensitive business data.

References

http://www.securityfocus.com/bid/93724
vdb-entryx_refsource_BID
http://www.oracle.com/technetwork/security-advisory/cpuoc...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1037038
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
8.2
Severity:
HIGH
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
🍪 This website uses cookies, like every other website on the internet 😕 By using our website, you consent to the use of cookies.