Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2016-10-25 CVE-2016-8291 Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Peopletools 8.54/8.55
Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.54 and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to Mobile Application Platform.
network
low complexity
oracle CWE-284
8.2
2016-10-25 CVE-2016-8281 Improper Access Control vulnerability in Oracle Platform Security for Java 12.1.3.0.0/12.2.1.0.0/12.2.1.1.0
Unspecified vulnerability in the Oracle Platform Security for Java component in Oracle Fusion Middleware 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2016-5536.
network
low complexity
oracle CWE-284
7.6
2016-10-25 CVE-2016-5625 Unspecified vulnerability in Oracle Mysql
Unspecified vulnerability in Oracle MySQL 5.7.14 and earlier allows local users to affect confidentiality, integrity, and availability via vectors related to Server: Packaging.
local
high complexity
oracle
7.0
2016-10-25 CVE-2016-5619 Improper Access Control vulnerability in Oracle Flexcube Universal Banking
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to INFRA, a different vulnerability than CVE-2016-5620.
network
low complexity
oracle CWE-284
8.1
2016-10-25 CVE-2016-5607 Improper Access Control vulnerability in Oracle Flexcube Universal Banking
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to INFRA.
network
low complexity
oracle CWE-284
8.8
2016-10-25 CVE-2016-5595 Improper Access Control vulnerability in Oracle Customer Interaction History
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1 through 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5592.
network
low complexity
oracle CWE-284
8.2
2016-10-25 CVE-2016-5593 Improper Access Control vulnerability in Oracle Customer Interaction History
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1 through 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5587 and CVE-2016-5591.
network
low complexity
oracle CWE-284
8.2
2016-10-25 CVE-2016-5592 Improper Access Control vulnerability in Oracle Customer Interaction History
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1 through 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5595.
network
low complexity
oracle CWE-284
8.2
2016-10-25 CVE-2016-5591 Improper Access Control vulnerability in Oracle Customer Interaction History
Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1 through 12.1.3, 12.2.3, and 12.2.4 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5587 and CVE-2016-5593.
network
low complexity
oracle CWE-284
8.2
2016-10-25 CVE-2016-5589 Improper Access Control vulnerability in Oracle Customer Relationship Management Technical Foundation
Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote attackers to affect confidentiality and integrity via unknown vectors.
network
low complexity
oracle CWE-284
8.2