Vulnerabilities > Oracle > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-5589 Improper Access Control vulnerability in Oracle Customer Relationship Management Technical Foundation
Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality and integrity via unknown vectors.
network
low complexity
oracle CWE-284
6.4
2016-10-25 CVE-2016-5587 Improper Access Control vulnerability in Oracle Customer Interaction History
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1 through 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5591 and CVE-2016-5593.
network
low complexity
oracle CWE-284
6.4
2016-10-25 CVE-2016-5586 Improper Access Control vulnerability in Oracle Email Center
Unspecified vulnerability in the Oracle Email Center component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality and integrity via unknown vectors.
network
low complexity
oracle CWE-284
6.4
2016-10-25 CVE-2016-5585 Improper Access Control vulnerability in Oracle Interaction Center Intelligence 12.1.1/12.1.2/12.1.3
Unspecified vulnerability in the Oracle Interaction Center Intelligence component in Oracle E-Business Suite 12.1.1 through 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors.
network
low complexity
oracle CWE-284
6.4
2016-10-25 CVE-2016-5584 Unspecified vulnerability in Oracle MySQL 5.5.52 and earlier, 5.6.33 and earlier, and 5.7.15 and earlier allows remote administrators to affect confidentiality via vectors related to Server: Security: Encryption.
network
high complexity
oracle mariadb debian
4.4
2016-10-25 CVE-2016-5583 Remote Security vulnerability in Oracle E-Business Suite
Unspecified vulnerability in the Oracle One-to-One Fulfillment component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect integrity via unknown vectors.
network
low complexity
oracle
5.0
2016-10-25 CVE-2016-5581 Improper Access Control vulnerability in Oracle Irecruitment
Unspecified vulnerability in the Oracle iRecruitment component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows local users to affect confidentiality, integrity, and availability via unknown vectors.
local
low complexity
oracle CWE-284
4.6
2016-10-25 CVE-2016-5580 Improper Access Control vulnerability in Oracle Secure Global Desktop 4.7/5.2
Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization 4.7 and 5.2 allows remote authenticated users to affect confidentiality and availability via vectors through Web Services.
network
low complexity
oracle CWE-284
5.5
2016-10-25 CVE-2016-5576 Improper Access Control vulnerability in Oracle Solaris 11.3
Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Kernel Zones.
local
low complexity
oracle CWE-284
4.9
2016-10-25 CVE-2016-5575 Improper Access Control vulnerability in Oracle Common Applications
Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality via vectors related to Resources Module.
network
low complexity
oracle CWE-284
5.0