Lucene search

[email protected]CVE-2016-0442

HistoryJan 21, 2016 - 2:59 a.m.

CVE-2016-0442

2016-01-2102:59:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2016-0442

oracle enterprise manager grid

confidentiality

integrity

availability

remote authentication

loader service

12.1.0.4

12.1.0.5

6.2 Medium

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.5%

JSON

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.4 and 12.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Loader Service.

CPENameOperatorVersion
oracle:enterprise_manager_grid_controloracle enterprise manager grid controleq12.1.0.4
oracle:enterprise_manager_grid_controloracle enterprise manager grid controleq12.1.0.5

CPE	Name	Operator	Version
oracle:enterprise_manager_grid_control	oracle enterprise manager grid control	eq	12.1.0.4
oracle:enterprise_manager_grid_control	oracle enterprise manager grid control	eq	12.1.0.5

References

www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

www.securitytracker.com/id/1034734

6.2 Medium

AI Score

Confidence

High

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

70.5%

JSON

Related for CVE-2016-0442

prion1 nessus1 oracle1