Oracle Fusion Middleware Vulnerability in Code Generation Engine
CVE-2016-5618

3.1LOW

Key Information:

Vendor
Oracle
Status
Data Integrator
Vendor
CVE Published:
25 October 2016

Summary

An unspecified vulnerability exists in the Oracle Data Integrator component of Oracle Fusion Middleware, enabling remote authenticated users to compromise confidentiality through specific vectors associated with the Code Generation Engine. This security flaw underscores the need for timely updates and security practices to mitigate potential exploitation risks.

References

http://www.oracle.com/technetwork/security-advisory/cpuoc...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/93682
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1037051
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
3.1
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.