Vulnerabilities > Oracle > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-5507 Unspecified vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.6.32 and earlier and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB.
network
low complexity
oracle
6.8
2016-10-25 CVE-2016-5504 Information Exposure vulnerability in Oracle Agile Product Lifecycle Management for Process 6.1.0.4/6.1.1.6/6.2.0.0
Unspecified vulnerability in the Oracle Agile Product Lifecycle Management for Process component in Oracle Supply Chain Products Suite 6.1.0.4, 6.1.1.6, and 6.2.0.0 allows local users to affect confidentiality via vectors related to Supplier Portal.
local
high complexity
oracle CWE-200
4.1
2016-10-25 CVE-2016-5503 Local Security vulnerability in Oracle SUN ZFS Storage Appliance KIT Ak2013
Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun Systems Products Suite AK 2013 allows local users to affect confidentiality, integrity, and availability via vectors related to Core Services.
local
low complexity
oracle
4.6
2016-10-25 CVE-2016-5502 Improper Access Control vulnerability in Oracle Flexcube Universal Banking
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to INFRA.
network
low complexity
oracle CWE-284
5.5
2016-10-25 CVE-2016-5500 Information Exposure vulnerability in Oracle Discoverer 11.1.1.7.0
Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7.0 allows remote attackers to affect confidentiality via vectors related to Viewer.
network
low complexity
oracle CWE-200
5.0
2016-10-25 CVE-2016-5497 Improper Access Control vulnerability in Oracle Database 12.1.0.2
Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors.
local
oracle CWE-284
4.4
2016-10-25 CVE-2016-5495 Improper Access Control vulnerability in Oracle Discoverer 11.1.1.7.0
Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7.0 allows remote attackers to affect confidentiality via vectors related to EUL Code & Schema.
network
low complexity
oracle CWE-284
5.0
2016-10-25 CVE-2016-5493 Improper Access Control vulnerability in Oracle Flexcube Private Banking 12.0.1/12.0.2/12.0.3
Unspecified vulnerability in the Oracle FLEXCUBE Private Banking component in Oracle Financial Services Applications 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
network
oracle CWE-284
4.9
2016-10-25 CVE-2016-5491 Improper Access Control vulnerability in Oracle Commerce Service Center 10.0.3.5/10.2.0.5
Unspecified vulnerability in the Oracle Commerce Service Center component in Oracle Commerce 10.0.3.5 and 10.2.0.5 allows remote attackers to affect confidentiality and integrity via unknown vectors.
network
oracle CWE-284
5.8
2016-10-25 CVE-2016-5488 Remote Security vulnerability in Oracle Weblogic Server 10.3.6.0.0/12.1.3.0.0
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.3.0 allows remote attackers to affect availability via vectors related to Web Container, a different vulnerability than CVE-2016-3445.
network
low complexity
oracle
5.0