CVE-2016-3547

EUVD-2016-4573
Unspecified vulnerability in the Oracle One-to-One Fulfillment component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality via vectors related to Content Manager.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 62%
Affected Products (NVD)
VendorProductVersion
oracleone-to-one_fulfillment
12.1.1
oracleone-to-one_fulfillment
12.1.2
oracleone-to-one_fulfillment
12.1.3
oracleone-to-one_fulfillment
12.2.3
oracleone-to-one_fulfillment
12.2.4
oracleone-to-one_fulfillment
12.2.5
𝑥
= Vulnerable software versions
References
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://www.securityfocus.com/bid/91787
http://www.securityfocus.com/bid/91893
http://www.securitytracker.com/id/1036403
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://www.securityfocus.com/bid/91787
http://www.securityfocus.com/bid/91893
http://www.securitytracker.com/id/1036403