CVE-2016-3473

Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.7 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
oracleCNA
---
---
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 85%
VendorProductVersion
oraclebusiness_intelligence_publisher
11.1.1.7.0
oraclebusiness_intelligence_publisher
11.1.1.9.0
oraclebusiness_intelligence_publisher
12.2.1.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.securityfocus.com/bid/93719
http://www.securitytracker.com/id/1037051
https://www.exploit-db.com/exploits/40590/
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.securityfocus.com/bid/93719
http://www.securitytracker.com/id/1037051
https://www.exploit-db.com/exploits/40590/