Vulnerabilities > Oracle > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-5527 Improper Access Control vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5524.
network
high complexity
oracle CWE-284
5.9
2016-10-25 CVE-2016-5524 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5527.
network
low complexity
oracle CWE-200
5.3
2016-10-25 CVE-2016-5522 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via unknown vectors.
network
low complexity
oracle CWE-200
4.3
2016-10-25 CVE-2016-5521 Improper Access Control vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5512.
network
low complexity
oracle CWE-284
6.5
2016-10-25 CVE-2016-5517 Improper Access Control vulnerability in Oracle Applications DBA 12.1.3
Unspecified vulnerability in the Oracle Applications DBA component in Oracle E-Business Suite 12.1.3 allows local users to affect confidentiality via vectors related to AD Utilities.
local
low complexity
oracle CWE-284
5.5
2016-10-25 CVE-2016-5516 Unspecified vulnerability in Oracle Database Server 12.1.0.2
Unspecified vulnerability in the Kernel PDB component in Oracle Database Server 12.1.0.2 allows local users to affect availability via unknown vectors.
local
low complexity
oracle
6.0
2016-10-25 CVE-2016-5513 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to File Manager.
network
low complexity
oracle CWE-200
4.3
2016-10-25 CVE-2016-5512 Cross-site Scripting vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5521.
network
low complexity
oracle CWE-79
6.1
2016-10-25 CVE-2016-5511 7PK - Security Features vulnerability in Oracle Webcenter Sites 12.2.1.0.0/12.2.1.1.0/12.2.1.2.0
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 12.2.1.0.0, 12.2.1.1.0, and 12.2.1.2.0 allows remote attackers to affect integrity via unknown vectors.
network
low complexity
oracle CWE-254
4.3
2016-10-25 CVE-2016-5510 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors.
network
low complexity
oracle CWE-200
5.3