Vulnerabilities > Oracle > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-5507 Unspecified vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.6.32 and earlier and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB.
network
low complexity
oracle
4.9
2016-10-25 CVE-2016-5505 Information Exposure vulnerability in Oracle Database Server 11.2.0.4/12.1.0.2
Unspecified vulnerability in the RDBMS Programmable Interface component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows local users to affect confidentiality via unknown vectors.
local
low complexity
oracle CWE-200
5.5
2016-10-25 CVE-2016-5504 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management for Process 6.1.0.4/6.1.1.6/6.2.0.0
Unspecified vulnerability in the Oracle Agile Product Lifecycle Management for Process component in Oracle Supply Chain Products Suite 6.1.0.4, 6.1.1.6, and 6.2.0.0 allows local users to affect confidentiality via vectors related to Supplier Portal.
local
high complexity
oracle CWE-200
4.1
2016-10-25 CVE-2016-5502 Improper Access Control vulnerability in Oracle Flexcube Universal Banking
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to INFRA.
network
low complexity
oracle CWE-284
5.4
2016-10-25 CVE-2016-5497 Improper Access Control vulnerability in Oracle Database 12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors.
local
high complexity
oracle CWE-284
6.4
2016-10-25 CVE-2016-5493 Improper Access Control vulnerability in Oracle Flexcube Private Banking 12.0.1/12.0.2/12.0.3
Unspecified vulnerability in the Oracle FLEXCUBE Private Banking component in Oracle Financial Services Applications 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
network
high complexity
oracle CWE-284
4.2
2016-10-25 CVE-2016-5488 Unspecified vulnerability in Oracle Weblogic Server 10.3.6.0.0/12.1.3.0.0
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.3.0 allows remote attackers to affect availability via vectors related to Web Container, a different vulnerability than CVE-2016-3445.
network
low complexity
oracle
5.3
2016-10-25 CVE-2016-5487 Unspecified vulnerability in Oracle Solaris 11.3
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors.
local
low complexity
oracle
5.3
2016-10-25 CVE-2016-5486 Information Management Errors vulnerability in Oracle SUN ZFS Storage Appliance KIT Ak2013
Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun Systems Products Suite AK 2013 allows local users to affect confidentiality via vectors related to Core Services.
local
low complexity
oracle CWE-199
5.5
2016-10-25 CVE-2016-5479 Information Exposure vulnerability in Oracle Flexcube Universal Banking 11.3.0/11.4.0/12.0.1
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, and 12.0.1 allows remote authenticated users to affect confidentiality via vectors related to INFRA.
network
low complexity
oracle CWE-200
4.3