Total
31934 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2016-3548 | 1 Oracle | 1 Marketing | 2017-09-01 | 5.0 MEDIUM | 5.3 MEDIUM |
| Unspecified vulnerability in the Oracle Marketing component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality via vectors related to Marketing activity collateral. | |||||
| CVE-2016-3496 | 1 Oracle | 1 Enterprise Manager For Fusion Middleware | 2017-09-01 | 4.3 MEDIUM | 4.7 MEDIUM |
| Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Enterprise Manager Grid Control 11.1.1.7, and 11.1.1.9 allows remote attackers to affect confidentiality via vectors related to SOA Topology Viewer. | |||||
| CVE-2016-3424 | 1 Oracle | 1 Mysql | 2017-09-01 | 4.0 MEDIUM | 4.9 MEDIUM |
| Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Optimizer. | |||||
| CVE-2016-3448 | 1 Oracle | 1 Application Express | 2017-09-01 | 5.8 MEDIUM | 6.1 MEDIUM |
| Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2016-3556 | 1 Oracle | 1 Agile Product Lifecycle Management Framework | 2017-09-01 | 10.0 HIGH | 9.8 CRITICAL |
| Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to EM Integration. | |||||
| CVE-2016-3568 | 1 Oracle | 1 Primavera P6 Enterprise Project Portfolio Management | 2017-09-01 | 5.8 MEDIUM | 6.1 MEDIUM |
| Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect confidentiality and integrity via vectors related to Web access, a different vulnerability than CVE-2016-3566, CVE-2016-3569, CVE-2016-3570, CVE-2016-3571, and CVE-2016-3573. | |||||
| CVE-2016-3553 | 1 Oracle | 1 Agile Product Lifecycle Management Framework | 2017-09-01 | 5.5 MEDIUM | 5.4 MEDIUM |
| Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality and integrity via vectors related to PC Core. | |||||
| CVE-2016-3479 | 1 Oracle | 1 Database | 2017-09-01 | 7.8 HIGH | 7.5 HIGH |
| Unspecified vulnerability in the Portable Clusterware component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote attackers to affect availability via unknown vectors. | |||||
| CVE-2016-3584 | 1 Oracle | 1 Solaris | 2017-09-01 | 4.4 MEDIUM | 7.0 HIGH |
| Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect confidentiality, integrity, and availability via vectors related to Libadimalloc. | |||||
| CVE-2016-5458 | 1 Oracle | 1 Communications Eagle Application Processor | 2017-09-01 | 5.5 MEDIUM | 6.4 MEDIUM |
| Unspecified vulnerability in the Oracle Communications EAGLE Application Processor component in Oracle Communications Applications 16.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to APPL. | |||||
| CVE-2016-3491 | 1 Oracle | 1 Crm Technical Foundation | 2017-09-01 | 8.5 HIGH | 8.2 HIGH |
| Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Wireless Framework. NOTE: the previous information is from the July 2016 CPU. Oracle has not commented on third-party claims that this issue is a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2016-3451 | 1 Oracle | 1 Integrated Lights Out Manager Firmware | 2017-09-01 | 4.3 MEDIUM | 4.7 MEDIUM |
| Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect integrity via vectors related to Web. | |||||
| CVE-2016-3532 | 1 Oracle | 1 Advanced Inbound Telephony | 2017-09-01 | 7.8 HIGH | 8.2 HIGH |
| Unspecified vulnerability in the Oracle Advanced Inbound Telephony component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to SDK client integration. NOTE: the previous information is from the July 2016 CPU. Oracle has not commented on third-party claims that this issue involves multiple cross-site scripting (XSS) vulnerabilities, which allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2016-3558 | 1 Oracle | 1 Email Center | 2017-09-01 | 4.3 MEDIUM | 4.7 MEDIUM |
| Unspecified vulnerability in the Oracle Email Center component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via vectors related to Email Center Agent Console, a different vulnerability than CVE-2016-3559. | |||||
| CVE-2016-3546 | 1 Oracle | 1 Advanced Collections | 2017-09-01 | 9.4 HIGH | 9.1 CRITICAL |
| Unspecified vulnerability in the Oracle Advanced Collections component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Report JSPs. | |||||
| CVE-2016-3474 | 1 Oracle | 1 Business Intelligence Publisher | 2017-09-01 | 4.3 MEDIUM | 3.7 LOW |
| Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality via vectors related to Security. | |||||
| CVE-2016-5437 | 1 Oracle | 1 Mysql | 2017-09-01 | 4.0 MEDIUM | 4.9 MEDIUM |
| Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Log. | |||||
| CVE-2016-3444 | 1 Oracle | 1 Retail Integration Bus | 2017-09-01 | 10.0 HIGH | 9.8 CRITICAL |
| Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Install. | |||||
| CVE-2016-5452 | 1 Oracle | 1 Solaris | 2017-09-01 | 2.1 LOW | 5.5 MEDIUM |
| Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect confidentiality via vectors related to Verified Boot. | |||||
| CVE-2016-3484 | 1 Oracle | 1 Database | 2017-09-01 | 3.2 LOW | 3.4 LOW |
| Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality and integrity via unknown vectors. | |||||