Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-10-25 | CVE-2016-5513 | Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5 Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to File Manager. | 4.0 |
| 2016-10-25 | CVE-2016-5512 | Cross-site Scripting vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5 Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5521. | 4.3 |
| 2016-10-25 | CVE-2016-5511 | 7PK - Security Features vulnerability in Oracle Webcenter Sites 12.2.1.0.0/12.2.1.1.0/12.2.1.2.0 Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 12.2.1.0.0, 12.2.1.1.0, and 12.2.1.2.0 allows remote attackers to affect integrity via unknown vectors. | 4.3 |
| 2016-10-25 | CVE-2016-5510 | Information Exposure vulnerability in Oracle Agile Product Lifecycle Management Framework 9.3.4/9.3.5 Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors. | 5.0 |
| 2016-10-25 | CVE-2016-5507 | Unspecified vulnerability in Oracle Mysql Unspecified vulnerability in Oracle MySQL 5.6.32 and earlier and 5.7.14 and earlier allows remote administrators to affect availability via vectors related to Server: InnoDB. | 6.8 |
| 2016-10-25 | CVE-2016-5504 | Information Exposure vulnerability in Oracle Agile Product Lifecycle Management for Process 6.1.0.4/6.1.1.6/6.2.0.0 Unspecified vulnerability in the Oracle Agile Product Lifecycle Management for Process component in Oracle Supply Chain Products Suite 6.1.0.4, 6.1.1.6, and 6.2.0.0 allows local users to affect confidentiality via vectors related to Supplier Portal. | 4.1 |
| 2016-10-25 | CVE-2016-5503 | Local Security vulnerability in Oracle SUN ZFS Storage Appliance KIT Ak2013 Unspecified vulnerability in the Sun ZFS Storage Appliance Kit (AK) component in Oracle Sun Systems Products Suite AK 2013 allows local users to affect confidentiality, integrity, and availability via vectors related to Core Services. | 4.6 |
| 2016-10-25 | CVE-2016-5502 | Improper Access Control vulnerability in Oracle Flexcube Universal Banking Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to INFRA. | 5.5 |
| 2016-10-25 | CVE-2016-5500 | Information Exposure vulnerability in Oracle Discoverer 11.1.1.7.0 Unspecified vulnerability in the Oracle Discoverer component in Oracle Fusion Middleware 11.1.1.7.0 allows remote attackers to affect confidentiality via vectors related to Viewer. | 5.0 |
| 2016-10-25 | CVE-2016-5497 | Improper Access Control vulnerability in Oracle Database 12.1.0.2 Unspecified vulnerability in the RDBMS Security component in Oracle Database Server 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors. | 4.4 |