Vulnerabilities > Oracle > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-5522 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via unknown vectors.
network
low complexity
oracle CWE-200
4.0
2016-10-25 CVE-2016-5519 Remote Security vulnerability in Oracle Fusion Middleware
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to Java Server Faces.
network
low complexity
oracle
6.5
2016-10-25 CVE-2016-5518 Remote Security vulnerability in Oracle Agile Engineering Data Management 6.1.3.0/6.2.0.0
Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to webfileservices.
network
oracle
6.8
2016-10-25 CVE-2016-5516 Local Security vulnerability in Oracle Database Server 12.1.0.2
Unspecified vulnerability in the Kernel PDB component in Oracle Database Server 12.1.0.2 allows local users to affect availability via unknown vectors.
local
oracle
4.7
2016-10-25 CVE-2016-5515 Remote Security vulnerability in Oracle Supply Chain Products Suite
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RMIServlet.
network
low complexity
oracle
6.5
2016-10-25 CVE-2016-5514 Remote Security vulnerability in Oracle Supply Chain Products Suite
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to ExportServlet.
network
low complexity
oracle
6.5
2016-10-25 CVE-2016-5513 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to File Manager.
network
low complexity
oracle CWE-200
4.0
2016-10-25 CVE-2016-5512 Cross-site Scripting vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5521.
network
oracle CWE-79
4.3
2016-10-25 CVE-2016-5511 7PK - Security Features vulnerability in Oracle Webcenter Sites 12.2.1.0.0/12.2.1.1.0/12.2.1.2.0
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 12.2.1.0.0, 12.2.1.1.0, and 12.2.1.2.0 allows remote attackers to affect integrity via unknown vectors.
network
oracle CWE-254
4.3
2016-10-25 CVE-2016-5510 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors.
network
low complexity
oracle CWE-200
5.0