Skip to main content
CVE-2016-3542 MEDIUM POC PATCH THREAT This Month

Unspecified vulnerability in the Oracle Knowledge Management component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote administrators to affect. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 28.3%.

Information Disclosure Oracle Knowledge Management
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
28.3%
CVE-2016-3500 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 11.6%.

Information Disclosure Java Oracle Linux Jdk +2
NVD
CVSS 3.0
5.3
EPSS
11.6%
CVE-2016-3508 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Java Oracle Jdk Jre +2
NVD
CVSS 3.0
5.3
EPSS
9.4%
CVE-2016-3486 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: FTS. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL Ubuntu Linux
NVD
CVSS 3.0
6.5
EPSS
2.4%
CVE-2016-3498 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 7u101 and 8u92 allows remote attackers to affect availability via vectors related to JavaFX. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Java Oracle Jdk Jre
NVD
CVSS 3.0
5.3
EPSS
7.8%
CVE-2016-3518 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL
NVD
CVSS 3.0
6.5
EPSS
1.6%
CVE-2016-3494 MEDIUM PATCH This Month

Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2 allows remote attackers to affect availability via. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity.

Information Disclosure Oracle Enterprise Manager Ops Center
NVD
CVSS 3.0
6.5
EPSS
1.3%
CVE-2016-3489 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Pump Import component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity.

Information Disclosure Oracle Database
NVD
CVSS 3.0
6.7
EPSS
0.1%
CVE-2016-5448 MEDIUM PATCH This Month

Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect integrity and availability via vectors related to SNMP. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Integrated Lights Out Manager Firmware
NVD
CVSS 3.0
6.5
EPSS
0.9%
CVE-2016-3521 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Powerkvm MariaDB MySQL +3
NVD
CVSS 3.0
6.5
EPSS
0.8%
CVE-2016-3501 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL Ubuntu Linux
NVD
CVSS 3.0
6.5
EPSS
0.7%
CVE-2016-3514 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Enterprise Communications Broker
NVD
CVSS 3.0
6.5
EPSS
0.6%
CVE-2016-3513 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Communications Operations Monitor component in Oracle Communications Applications before 3.3.92.0.0 allows remote authenticated users to affect confidentiality. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Communications Operations Monitor
NVD
CVSS 3.0
6.5
EPSS
0.6%
CVE-2016-5470 MEDIUM PATCH This Month

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality via vectors related to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
6.5
EPSS
0.6%
CVE-2016-3502 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8 and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Webcenter Sites
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2016-5461 MEDIUM PATCH This Month

Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Siebel Core Server Framework
NVD
CVSS 3.0
6.5
EPSS
0.4%
CVE-2016-3476 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote attackers to affect confidentiality and integrity via vectors related to Information Manager. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Knowledge
NVD
CVSS 3.0
6.5
EPSS
0.3%
CVE-2016-3537 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
6.5
EPSS
0.3%
CVE-2016-5458 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Communications EAGLE Application Processor component in Oracle Communications Applications 16.0 allows remote authenticated users to affect confidentiality and. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Communications Eagle Application Processor
NVD
CVSS 3.0
6.4
EPSS
0.2%
CVE-2016-3572 MEDIUM PATCH This Month

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote authenticated users to. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Primavera P6 Enterprise Project Portfolio Management
NVD
CVSS 3.0
6.4
EPSS
0.2%
CVE-2016-5454 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and availability via vectors related to Verified Boot. Rated medium severity (CVSS 6.4).

Information Disclosure Oracle Solaris
NVD
CVSS 3.0
6.4
EPSS
0.1%
CVE-2016-3563 MEDIUM PATCH This Month

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.5 allows local users to affect confidentiality and integrity via vectors. Rated medium severity (CVSS 6.3), this vulnerability is low attack complexity.

Information Disclosure Oracle Enterprise Manager Base Platform
NVD
CVSS 3.0
6.3
EPSS
0.1%
CVE-2016-3589 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Applications 12.0.1, 12.0.2, and 12.0.3 allows remote attackers to affect confidentiality and. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Flexcube Direct Banking
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3555 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via vectors related. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3519 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via vectors related. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3478 MEDIUM This Month

Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and integrity via. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Oracle Peoplesoft Enterprise Peopletools
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3448 MEDIUM PATCH This Month

Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect confidentiality and integrity via unknown vectors. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Application Express
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3573 MEDIUM PATCH This Month

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Primavera P6 Enterprise Project Portfolio Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3571 MEDIUM PATCH This Month

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Primavera P6 Enterprise Project Portfolio Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3570 MEDIUM PATCH This Month

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Primavera P6 Enterprise Project Portfolio Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3569 MEDIUM PATCH This Month

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Primavera P6 Enterprise Project Portfolio Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3568 MEDIUM PATCH This Month

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Primavera P6 Enterprise Project Portfolio Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3566 MEDIUM PATCH This Month

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Primavera P6 Enterprise Project Portfolio Management
NVD
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-3557 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via vectors related. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2016-3525 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality via vectors related to Cookie Management. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Oracle Applications Manager
NVD
CVSS 3.0
5.9
EPSS
0.7%
CVE-2016-3588 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote authenticated users to affect integrity and availability via vectors related to Server: InnoDB. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable.

Information Disclosure Oracle MySQL
NVD
CVSS 3.0
5.9
EPSS
0.6%
CVE-2016-3467 MEDIUM PATCH This Month

Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect availability via unknown vectors. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Application Express
NVD
CVSS 3.0
5.8
EPSS
1.0%
CVE-2016-3612 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 5.0.22 allows remote attackers to affect confidentiality via vectors related to Core. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Oracle Vm Virtualbox
NVD
CVSS 3.0
5.9
EPSS
0.3%
CVE-2016-5477 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1 and 3.0.1 allows remote attackers to affect confidentiality via vectors related to Administration. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Glassfish Server
NVD
CVSS 3.0
5.8
EPSS
0.3%
CVE-2016-3608 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.0.1 allows remote attackers to affect confidentiality via vectors related to Administration. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Glassfish Server
NVD
CVSS 3.0
5.8
EPSS
0.3%
CVE-2016-3529 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via vectors related to SDK, a. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Agile Product Lifecycle Management
NVD
CVSS 3.0
5.8
EPSS
0.3%
CVE-2016-3472 MEDIUM PATCH This Month

Unspecified vulnerability in the Siebel Engineering - Installer and Deployment component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Siebel Engineering Installer And Deployment
NVD
CVSS 3.0
5.7
EPSS
0.3%
CVE-2016-3445 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.3.0 allows remote attackers to affect availability via vectors related to Web. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Oracle Weblogic Server
NVD
CVSS 3.0
5.3
EPSS
1.5%
CVE-2016-3615 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable.

Information Disclosure Oracle Linux MariaDB MySQL +3
NVD
CVSS 3.0
5.3
EPSS
1.4%
CVE-2016-3497 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Kernel, a different vulnerability than CVE-2016-5469 and CVE-2016-5471. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Oracle Solaris
NVD
CVSS 3.0
5.5
EPSS
0.2%
CVE-2016-5471 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Kernel, a different vulnerability than CVE-2016-3497 and CVE-2016-5469. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Oracle Solaris
NVD
CVSS 3.0
5.5
EPSS
0.2%
CVE-2016-3453 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability via vectors related to Kernel. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Oracle Solaris
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2016-5469 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Kernel, a different vulnerability than CVE-2016-3497 and CVE-2016-5471. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Oracle Solaris
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2016-5452 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect confidentiality via vectors related to Verified Boot. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Oracle Solaris
NVD
CVSS 3.0
5.5
EPSS
0.1%
CVE-2016-3597 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 5.0.26 allows local users to affect availability via vectors related to Core. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity.

Information Disclosure Oracle Vm Virtualbox
NVD
CVSS 3.0
5.5
EPSS
0.1%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy