Vulnerabilities > Improper Access Control

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-5620 Improper Access Control vulnerability in Oracle Flexcube Universal Banking
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to INFRA, a different vulnerability than CVE-2016-5619.
network
low complexity
oracle CWE-284
5.4
5.4
2016-10-25 CVE-2016-5619 Improper Access Control vulnerability in Oracle Flexcube Universal Banking
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to INFRA, a different vulnerability than CVE-2016-5620.
network
low complexity
oracle CWE-284
8.1
8.1
2016-10-25 CVE-2016-5615 Improper Access Control vulnerability in Oracle Solaris 11.3
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Lynx.
local
low complexity
oracle CWE-284
3.3
3.3
2016-10-25 CVE-2016-5613 Improper Access Control vulnerability in Oracle VM Virtualbox
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect availability via vectors related to Core, a different vulnerability than CVE-2016-5608.
local
low complexity
oracle CWE-284
4.3
4.3
2016-10-25 CVE-2016-5610 Improper Access Control vulnerability in Oracle VM Virtualbox
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect confidentiality, integrity, and availability via vectors related to Core.
local
low complexity
oracle CWE-284
6.8
6.8
2016-10-25 CVE-2016-5608 Improper Access Control vulnerability in Oracle VM Virtualbox
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.0.28 and 5.1.x before 5.1.8 in Oracle Virtualization allows local users to affect availability via vectors related to Core, a different vulnerability than CVE-2016-5613.
local
low complexity
oracle CWE-284
5.5
5.5
2016-10-25 CVE-2016-5607 Improper Access Control vulnerability in Oracle Flexcube Universal Banking
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to INFRA.
network
low complexity
oracle CWE-284
8.8
8.8
2016-10-25 CVE-2016-5606 Improper Access Control vulnerability in Oracle Solaris 11.3
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect integrity and availability via vectors related to Kernel Zones.
local
low complexity
oracle CWE-284
6.1
6.1
2016-10-25 CVE-2016-5605 Improper Access Control vulnerability in Oracle VM Virtualbox
Unspecified vulnerability in the Oracle VM VirtualBox component before 5.1.4 in Oracle Virtualization allows remote attackers to affect confidentiality and integrity via vectors related to VRDE.
network
low complexity
oracle CWE-284
critical
 9.1
9.1
2016-10-25 CVE-2016-5604 Improper Access Control vulnerability in Oracle Enterprise Manager Base Platform 12.1.0.5
Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.5 allows local users to affect confidentiality and integrity via vectors related to Security Framework, a different vulnerability than CVE-2016-3563.
local
low complexity
oracle CWE-284
6.3
6.3