Lucene search

[email protected]CVE-2016-3543

HistoryJul 21, 2016 - 10:13 a.m.

CVE-2016-3543

2016-07-2110:13:40

[email protected]

web.nvd.nist.gov

cve-2016-3543

oracle

common applications calendar

e-business suite

vulnerability

confidentiality

integrity

tasks

nvd

9.4 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:C/A:N

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

7.8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.0%

JSON

Unspecified vulnerability in the Oracle Common Applications Calendar component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Tasks.

Affected configurations

NVD

Node

oraclecommon_applications_calendarMatch12.1.1

oraclecommon_applications_calendarMatch12.1.2

oraclecommon_applications_calendarMatch12.1.3

oraclecommon_applications_calendarMatch12.2.3

oraclecommon_applications_calendarMatch12.2.4

oraclecommon_applications_calendarMatch12.2.5

CPENameOperatorVersion
oracle:common_applications_calendaroracle common applications calendareq12.1.1
oracle:common_applications_calendaroracle common applications calendareq12.1.2
oracle:common_applications_calendaroracle common applications calendareq12.1.3
oracle:common_applications_calendaroracle common applications calendareq12.2.3
oracle:common_applications_calendaroracle common applications calendareq12.2.4
oracle:common_applications_calendaroracle common applications calendareq12.2.5

CPE	Name	Operator	Version
oracle:common_applications_calendar	oracle common applications calendar	eq	12.1.1
oracle:common_applications_calendar	oracle common applications calendar	eq	12.1.2
oracle:common_applications_calendar	oracle common applications calendar	eq	12.1.3
oracle:common_applications_calendar	oracle common applications calendar	eq	12.2.3
oracle:common_applications_calendar	oracle common applications calendar	eq	12.2.4
oracle:common_applications_calendar	oracle common applications calendar	eq	12.2.5

References

www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

www.securityfocus.com/bid/91787

www.securityfocus.com/bid/91841

www.securitytracker.com/id/1036403

Social References

9.4 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:C/A:N

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

7.8 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.0%

JSON

Related for CVE-2016-3543

nvd1 prion1 cvelist1 nessus1 oracle1