Lucene search

[email protected]CVE-2016-0401

HistoryJan 21, 2016 - 2:59 a.m.

CVE-2016-0401

2016-01-2102:59:13

[email protected]

web.nvd.nist.gov

oracle

bi publisher

remote attackers

scheduler

cve-2016-0401

cve-2016-0429

integrity

fusion middleware.

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.6%

JSON

Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect integrity via unknown vectors related to Scheduler, a different vulnerability than CVE-2016-0429.

Affected configurations

NVD

Node

oraclefusion_middlewareMatch11.1.1.7.0

oraclefusion_middlewareMatch11.1.1.9

CPENameOperatorVersion
oracle:fusion_middlewareoracle fusion middlewareeq11.1.1.7.0
oracle:fusion_middlewareoracle fusion middlewareeq11.1.1.9

CPE	Name	Operator	Version
oracle:fusion_middleware	oracle fusion middleware	eq	11.1.1.7.0
oracle:fusion_middleware	oracle fusion middleware	eq	11.1.1.9

References

www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

www.securitytracker.com/id/1034711

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.6%

JSON

Related for CVE-2016-0401

cve1 cvelist2 nvd2 prion2 nessus1 oracle1