Skip to main content
CVE-2016-3536 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS Oracle Marketing
NVD
CVSS 3.0
8.2
EPSS
0.7%
CVE-2016-3522 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Web Applications Desktop Integrator
NVD
CVSS 3.0
8.2
EPSS
0.6%
CVE-2016-3512 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Customer Interaction History
NVD
CVSS 3.0
8.2
EPSS
0.4%
CVE-2016-5465 HIGH PATCH This Week

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and integrity via. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
8.2
EPSS
0.4%
CVE-2016-5451 HIGH PATCH This Week

Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality and integrity. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Siebel Ui Framework
NVD
CVSS 3.0
8.1
EPSS
0.3%
CVE-2016-3477 HIGH PATCH This Week

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows local users. Rated high severity (CVSS 8.1), this vulnerability is no authentication required.

Information Disclosure Oracle Powerkvm MySQL Linux +3
NVD
CVSS 3.0
8.1
EPSS
0.1%
CVE-2016-3552 HIGH PATCH This Week

Unspecified vulnerability in Oracle Java SE 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install. Rated high severity (CVSS 8.1), this vulnerability is no authentication required.

Information Disclosure Java Oracle Jdk Jre
NVD
CVSS 3.0
8.1
EPSS
0.1%
CVE-2016-5447 HIGH PATCH This Week

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote authenticated users to affect confidentiality, integrity, and availability via. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Integrated Lights Out Manager Firmware
NVD
CVSS 3.0
7.6
EPSS
1.7%
CVE-2016-3528 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect availability via. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Internet Expenses
NVD
CVSS 3.0
7.5
EPSS
2.2%
CVE-2016-3479 HIGH PATCH This Week

Unspecified vulnerability in the Portable Clusterware component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote attackers to affect availability via unknown vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Database
NVD
CVSS 3.0
7.5
EPSS
2.2%
CVE-2016-5449 HIGH PATCH This Week

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect availability via vectors related to Console Redirection. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Integrated Lights Out Manager Firmware
NVD
CVSS 3.0
7.5
EPSS
2.1%
CVE-2016-3481 HIGH PATCH This Week

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote authenticated users to affect availability via vectors related to Web. Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Integrated Lights Out Manager Firmware
NVD
CVSS 3.0
7.7
EPSS
1.0%
CVE-2016-3440 HIGH PATCH This Week

Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. Rated high severity (CVSS 7.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL
NVD
CVSS 3.0
7.7
EPSS
1.0%
CVE-2016-5472 HIGH PATCH This Week

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows local users to affect confidentiality, integrity, and availability via. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Oracle Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-3515 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote attackers to affect confidentiality via. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Enterprise Communications Broker
NVD
CVSS 3.0
7.5
EPSS
1.5%
CVE-2016-5476 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote authenticated users to affect. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Retail Integration Bus
NVD
CVSS 3.0
7.6
EPSS
0.8%
CVE-2016-5475 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Retail Service Backbone component in Oracle Retail Applications 14.0, 14.1, and 15.0 allows remote authenticated users to affect confidentiality, integrity,. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Retail Service Backbone
NVD
CVSS 3.0
7.6
EPSS
0.7%
CVE-2016-3503 HIGH PATCH This Week

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Install. Rated high severity (CVSS 7.7), this vulnerability is no authentication required.

Information Disclosure Java Oracle Jdk Jre
NVD
CVSS 3.0
7.7
EPSS
0.1%
CVE-2016-3511 HIGH PATCH This Week

Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows local users to affect confidentiality, integrity, and availability via vectors related to Deployment. Rated high severity (CVSS 7.7), this vulnerability is no authentication required.

Information Disclosure Java Oracle Jdk Jre
NVD
CVSS 3.0
7.7
EPSS
0.1%
CVE-2016-3565 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Retail Order Broker component in Oracle Retail Applications 5.1 and 5.2 allows remote authenticated users to affect confidentiality, integrity, and. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Retail Order Broker
NVD
CVSS 3.1
7.6
EPSS
0.5%
CVE-2016-3526 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via vectors related to SDK, a. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
7.5
EPSS
0.8%
CVE-2016-3544 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 11.2.1.0.0 allows remote authenticated users to. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Business Intelligence
NVD
CVSS 3.0
7.6
EPSS
0.3%
CVE-2016-3500 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 11.6%.

Information Disclosure Java Oracle Linux Jdk +2
NVD
CVSS 3.0
5.3
EPSS
11.6%
CVE-2016-3471 HIGH PATCH This Week

Unspecified vulnerability in Oracle MySQL 5.5.45 and earlier and 5.6.26 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Option. Rated high severity (CVSS 7.5).

Information Disclosure Oracle MySQL Enterprise Linux MariaDB
NVD
CVSS 3.1
7.5
EPSS
0.1%
CVE-2016-3585 HIGH PATCH This Week

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect confidentiality and integrity via vectors related to Emulex. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Oracle Integrated Lights Out Manager Firmware
NVD
CVSS 3.0
7.4
EPSS
0.3%
CVE-2016-5446 HIGH PATCH This Week

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Integrated Lights Out Manager Firmware
NVD
CVSS 3.0
7.3
EPSS
0.7%
CVE-2016-3561 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality, integrity, and availability via. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
7.3
EPSS
0.7%
CVE-2016-3483 HIGH PATCH This Week

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and availability via. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
7.2
EPSS
0.6%
CVE-2016-3539 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
7.1
EPSS
1.0%
CVE-2016-3538 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
7.1
EPSS
1.0%
CVE-2016-3530 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
7.1
EPSS
1.0%
CVE-2016-3508 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Java Oracle Jdk Jre +2
NVD
CVSS 3.0
5.3
EPSS
9.4%
CVE-2016-3470 HIGH PATCH This Week

Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.4.1 allows remote authenticated users to affect confidentiality and integrity via. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Transportation Management
NVD
CVSS 3.0
7.1
EPSS
0.2%
CVE-2016-3584 HIGH PATCH This Week

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Libadimalloc. Rated high severity (CVSS 7.0).

Information Disclosure Oracle Solaris
NVD
CVSS 3.0
7.0
EPSS
0.1%
CVE-2016-3486 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: FTS. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL Ubuntu Linux
NVD
CVSS 3.0
6.5
EPSS
2.4%
CVE-2016-3498 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows remote attackers to affect availability via vectors related to JavaFX. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Java Oracle Jdk Jre
NVD
CVSS 3.0
5.3
EPSS
7.8%
CVE-2016-3518 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL
NVD
CVSS 3.0
6.5
EPSS
1.6%
CVE-2016-3494 MEDIUM PATCH This Month

Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2 allows remote attackers to affect availability via. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity.

Information Disclosure Oracle Enterprise Manager Ops Center
NVD
CVSS 3.0
6.5
EPSS
1.3%
CVE-2016-3489 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Pump Import component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Information Disclosure Oracle Database
NVD
CVSS 3.0
6.7
EPSS
0.1%
CVE-2016-5448 MEDIUM PATCH This Month

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect integrity and availability via vectors related to SNMP. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Integrated Lights Out Manager Firmware
NVD
CVSS 3.0
6.5
EPSS
0.9%
CVE-2016-3521 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Powerkvm MariaDB MySQL +3
NVD
CVSS 3.0
6.5
EPSS
0.8%
CVE-2016-3501 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL Ubuntu Linux
NVD
CVSS 3.0
6.5
EPSS
0.7%
CVE-2016-3514 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Enterprise Communications Broker
NVD
CVSS 3.0
6.5
EPSS
0.6%
CVE-2016-3513 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Communications Operations Monitor component in Oracle Communications Applications before 3.3.92.0.0 allows remote authenticated users to affect confidentiality. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Communications Operations Monitor
NVD
CVSS 3.0
6.5
EPSS
0.6%
CVE-2016-5470 MEDIUM PATCH This Month

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality via vectors related to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
6.5
EPSS
0.6%
CVE-2016-3502 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8 and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Webcenter Sites
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2016-5461 MEDIUM PATCH This Month

Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Siebel Core Server Framework
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2016-3476 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote attackers to affect confidentiality and integrity via vectors related to Information Manager. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Knowledge
NVD
CVSS 3.0
6.5
EPSS
0.3%
CVE-2016-3537 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
6.5
EPSS
0.3%
CVE-2016-5458 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Communications EAGLE Application Processor component in Oracle Communications Applications 16.0 allows remote authenticated users to affect confidentiality and. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Communications Eagle Application Processor
NVD
CVSS 3.0
6.4
EPSS
0.2%
Prev Page 2 of 4 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy