Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-10-25 | CVE-2016-5604 | Improper Access Control vulnerability in Oracle Enterprise Manager Base Platform 12.1.0.5 Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.5 allows local users to affect confidentiality and integrity via vectors related to Security Framework, a different vulnerability than CVE-2016-3563. | 6.3 |
| 2016-10-25 | CVE-2016-5603 | Information Exposure vulnerability in Oracle Flexcube Universal Banking Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3, 12.1.0, and 12.2.0 allows remote authenticated users to affect confidentiality via vectors related to INFRA, a different vulnerability than CVE-2016-5621. | 4.3 |
| 2016-10-25 | CVE-2016-5602 | Information Exposure vulnerability in Oracle Data Integrator Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality via vectors related to Code Generation Engine. | 5.7 |
| 2016-10-25 | CVE-2016-5601 | Improper Access Control vulnerability in Oracle Weblogic Server 12.1.3.0.0/12.2.1.0.0/12.2.1.1.0 Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 12.1.3.0, 12.2.1.0, and 12.2.1.1 allows local users to affect confidentiality and integrity via vectors related to CIE Related Components. | 6.3 |
| 2016-10-25 | CVE-2016-5600 | Improper Access Control vulnerability in Oracle Peoplesoft Enterprise Supply Chain Management Services Procurement 9.1/9.2 Unspecified vulnerability in the PeopleSoft Enterprise SCM Services Procurement component in Oracle PeopleSoft Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | 5.4 |
| 2016-10-25 | CVE-2016-5598 | Improper Access Control vulnerability in Oracle Mysql Connector/Python Unspecified vulnerability in the MySQL Connector component 2.1.3 and earlier and 2.0.4 and earlier in Oracle MySQL allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Connector/Python. | 5.6 |
| 2016-10-25 | CVE-2016-5597 | Information Exposure vulnerability in Oracle JDK and JRE Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote attackers to affect confidentiality via vectors related to Networking. | 5.9 |
| 2016-10-25 | CVE-2016-5596 | Information Exposure vulnerability in Oracle Customer Relationship Management Technical Foundation Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows remote authenticated users to affect confidentiality via unknown vectors. | 4.3 |
| 2016-10-25 | CVE-2016-5594 | Improper Access Control vulnerability in Oracle Flexcube Universal Banking Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, and 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality via vectors related to INFRA. | 5.0 |
| 2016-10-25 | CVE-2016-5585 | Improper Access Control vulnerability in Oracle Interaction Center Intelligence 12.1.1/12.1.2/12.1.3 Unspecified vulnerability in the Oracle Interaction Center Intelligence component in Oracle E-Business Suite 12.1.1 through 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors. | 6.5 |