Lucene search

[email protected]CVE-2016-0427

HistoryJan 21, 2016 - 2:59 a.m.

CVE-2016-0427

2016-01-2102:59:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2016-0427

oracle

enterprise manager grid control

vulnerability

confidentiality

ui framework

6 Medium

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

36.0%

JSON

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 11.1.0.1, 11.2.0.4, 12.1.0.4, and 12.1.0.5 allows remote authenticated users to affect confidentiality via unknown vectors related to UI Framework.

CPENameOperatorVersion
oracle:enterprise_manager_grid_controloracle enterprise manager grid controleq11.2.0.4
oracle:enterprise_manager_grid_controloracle enterprise manager grid controleq12.4.0.2
oracle:enterprise_manager_grid_controloracle enterprise manager grid controleq11.1.0.1
oracle:enterprise_manager_grid_controloracle enterprise manager grid controleq12.5.0.2

CPE	Name	Operator	Version
oracle:enterprise_manager_grid_control	oracle enterprise manager grid control	eq	11.2.0.4
oracle:enterprise_manager_grid_control	oracle enterprise manager grid control	eq	12.4.0.2
oracle:enterprise_manager_grid_control	oracle enterprise manager grid control	eq	11.1.0.1
oracle:enterprise_manager_grid_control	oracle enterprise manager grid control	eq	12.5.0.2

References

www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

www.securitytracker.com/id/1034734

6 Medium

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

36.0%

JSON

Related for CVE-2016-0427

prion1 nessus1 oracle1