Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-07-21 | CVE-2016-3528 | Unspecified vulnerability in Oracle Internet Expenses Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect availability via vectors related to Expenses Admin Utilities. | 7.5 |
| 2016-07-21 | CVE-2016-3527 | Unspecified vulnerability in Oracle Demand Planning 12.1/12.2 Unspecified vulnerability in the Oracle Demand Planning component in Oracle Supply Chain Products Suite 12.1 and 12.2 allows remote attackers to affect confidentiality and integrity via vectors related to ODPDA Servlet. | 9.1 |
| 2016-07-21 | CVE-2016-3526 | Unspecified vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5 Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via vectors related to SDK, a different vulnerability than CVE-2016-3529 and CVE-2016-3560. | 7.5 |
| 2016-07-21 | CVE-2016-3525 | Unspecified vulnerability in Oracle Applications Manager 12.1.3 Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality via vectors related to Cookie Management. | 5.9 |
| 2016-07-21 | CVE-2016-3524 | Unspecified vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Configuration. | 5.4 |
| 2016-07-21 | CVE-2016-3523 | Unspecified vulnerability in Oracle web Applications Desktop Integrator Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors related to Application Service. | 4.7 |
| 2016-07-21 | CVE-2016-3522 | Unspecified vulnerability in Oracle web Applications Desktop Integrator Unspecified vulnerability in the Oracle Web Applications Desktop Integrator component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Application Service. | 8.2 |
| 2016-07-21 | CVE-2016-3521 | Unspecified vulnerability in Oracle MySQL 5.5.49 and earlier, 5.6.30 and earlier, and 5.7.12 and earlier and MariaDB before 5.5.50, 10.0.x before 10.0.26, and 10.1.x before 10.1.15 allows remote authenticated users to affect availability via vectors related to Server: Types. | 6.5 |
| 2016-07-21 | CVE-2016-3520 | Unspecified vulnerability in Oracle E-Business Suite Unspecified vulnerability in the Oracle Application Object Library component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote administrators to affect confidentiality via vectors related to AOL Diagnostic tests. | 4.9 |
| 2016-07-21 | CVE-2016-3519 | Unspecified vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5 Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via vectors related to PC / Get Shortcut. | 6.1 |