Vulnerabilities > Improper Access Control
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-10-28 | CVE-2016-8580 | Improper Access Control vulnerability in Alienvault products PHP object injection vulnerabilities exist in multiple widget files in AlienVault OSSIM and USM before 5.3.2. | 9.8 |
| 2016-10-25 | CVE-2016-8296 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote authenticated users to affect confidentiality and integrity via vectors related to LDAP. | 7.6 |
| 2016-10-25 | CVE-2016-8293 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to Integration Broker, a different vulnerability than CVE-2016-5529 and CVE-2016-5530. | 8.2 |
| 2016-10-25 | CVE-2016-8292 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Human Capital Management Talent Acquisition Manager 9.2 Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote authenticated users to affect confidentiality and integrity via vectors related to Talent Acquisition Manager. | 4.2 |
| 2016-10-25 | CVE-2016-8291 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55 Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to Mobile Application Platform. | 8.2 |
| 2016-10-25 | CVE-2016-8288 | Improper Access Control vulnerability in Oracle Mysql Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect integrity via vectors related to Server: InnoDB Plugin. | 3.1 |
| 2016-10-25 | CVE-2016-8285 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Human Capital Management Candidate Gateway 9.2 Unspecified vulnerability in the PeopleSoft Enterprise HCM component in Oracle PeopleSoft Products 9.2 allows remote administrators to affect confidentiality and integrity via vectors related to Candidate Gateway. | 4.8 |
| 2016-10-25 | CVE-2016-8281 | Improper Access Control vulnerability in Oracle Platform Security for Java 12.1.3.0.0/12.2.1.0.0/12.2.1.1.0 Unspecified vulnerability in the Oracle Platform Security for Java component in Oracle Fusion Middleware 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-5536. | 7.6 |
| 2016-10-25 | CVE-2016-5622 | Improper Access Control vulnerability in Oracle Flexcube Universal Banking Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote attackers to affect confidentiality and integrity via vectors related to INFRA. | 6.1 |
| 2016-10-25 | CVE-2016-5621 | Improper Access Control vulnerability in Oracle Flexcube Universal Banking Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 and 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect confidentiality via vectors related to INFRA, a different vulnerability than CVE-2016-5603. | 4.3 |