CVE-2016-3544

Опубликовано: 21 июл. 2016

Источник: nvd

CVSS3: 7.6

CVSS2: 7

EPSS Низкий

Описание

Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 11.2.1.0.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Analytics Web General.

Ссылки

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/91787
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/92028
http://www.securitytracker.com/id/1036370
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Patch
Vendor Advisory
http://www.securityfocus.com/bid/91787
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/92028
http://www.securitytracker.com/id/1036370

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:business_intelligence:11.1.1.7.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:oracle:business_intelligence:11.1.1.9.0:*:*:*:enterprise:*:*:*

cpe:2.3:a:oracle:business_intelligence:11.2.1.0.0:*:*:*:enterprise:*:*:*

EPSS

Процентиль: 50%

0.00274

Низкий

7.6 High

CVSS3

7 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-gphj-xw2x-67m3