Vulnerabilities > Improper Access Control
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-10-25 | CVE-2016-5560 | Improper Access Control vulnerability in Oracle Siebel Customer Order Management 16.1 Unspecified vulnerability in the Siebel UI Framework component in Oracle Siebel CRM 16.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to OpenUI. | 5.4 |
| 2016-10-25 | CVE-2016-5557 | Improper Access Control vulnerability in Oracle Advanced Pricing Unspecified vulnerability in the Oracle Advanced Pricing component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality and integrity via unknown vectors. | 8.2 |
| 2016-10-25 | CVE-2016-5556 | Improper Access Control vulnerability in Oracle JDK and JRE Unspecified vulnerability in Oracle Java SE 6u121, 7u111, and 8u102 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. | 9.6 |
| 2016-10-25 | CVE-2016-5536 | Improper Access Control vulnerability in Oracle Platform Security for Java 12.1.3.0.0/12.2.1.0.0/12.2.1.1.0 Unspecified vulnerability in the Oracle Platform Security for Java component in Oracle Fusion Middleware 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-8281. | 7.6 |
| 2016-10-25 | CVE-2016-5534 | Improper Access Control vulnerability in Oracle Siebel User Interface Framework 16.1 Unspecified vulnerability in the Siebel Apps - Customer Order Management component in Oracle Siebel CRM 16.1 allows remote authenticated users to affect confidentiality via unknown vectors. | 6.5 |
| 2016-10-25 | CVE-2016-5533 | Improper Access Control vulnerability in Oracle Primavera P6 Enterprise Project Portfolio Management Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.4, 15.x, and 16.x allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | 5.4 |
| 2016-10-25 | CVE-2016-5532 | Improper Access Control vulnerability in Oracle Shipping Execution Unspecified vulnerability in the Oracle Shipping Execution component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality via vectors related to Workflow Events. | 5.3 |
| 2016-10-25 | CVE-2016-5527 | Improper Access Control vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5 Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5524. | 5.9 |
| 2016-10-25 | CVE-2016-5526 | Improper Access Control vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5 Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Apache Tomcat. | 7.3 |
| 2016-10-25 | CVE-2016-5525 | Improper Access Control vulnerability in Oracle Solaris Cluster 3.3/4.3 Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 and 4.3 allows local users to affect integrity via vectors related to Cluster check files. | 3.3 |