Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2016-3506
HistoryJul 21, 2016 - 10:12 a.m.

Code injection

2016-07-2110:12:00
PRIOn knowledge base
www.prio-n.com
7

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.3 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.2%

JSON

Unspecified vulnerability in the JDBC component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2; the Oracle Retail Xstore Point of Service 5.5, 6.0, 6.5, 7.0, 7.1, 15.0, and 16.0; the Oracle Retail Warehouse Management System 14.04, 14.1.3, and 15.0.1; the Oracle Retail Workforce Management 1.60.7, and 1.64.0; the Oracle Retail Clearance Optimization Engine 13.4; the Oracle Retail Markdown Optimization 13.4 and 14.0; and Oracle Retail Merchandising System 16.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CPENameOperatorVersion
jdbceq12.1.0.2
jdbceq12.1.0.1
jdbceq11.2.0.4

Related

atlassian 3
ibm 5
veracode 1
cve 1
f5 2
nessus 1
openvas 1
oracle 6
atlassian
atlassian
Oracle Security Patched DB Driver Not Working
2016-10-05 14:12:31
Oracle Security Patched DB Driver Not Working
2016-10-05 14:12:31
Oracle Security Patched DB Driver Not Working
2016-10-05 14:12:31
ibm
ibm
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2016-3506)
2020-05-27 08:25:50
Security Bulletin: Due to use of Oracle JDBC component, ITNM is vulnerable to an unspecified vulnerability (CVE-2016-3506)
2023-01-04 16:41:22
Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities (CVE-2016-3506, CVE-2020-13692)
2021-09-30 17:52:51
veracode
veracode
Remote Code Execution (RCE)
2020-08-20 03:04:18
cve
cve
CVE-2016-3506
2016-07-21 10:12:00
f5
f5
K11100332 : Multiple Oracle Database Server vulnerabilities
2016-09-15 00:00:00
SOL11100332 - Multiple Oracle Database Server vulnerabilities
2016-09-15 00:00:00
nessus
nessus
Oracle Database Multiple Vulnerabilities (July 2016 CPU) (FREAK)
2016-07-22 00:00:00
openvas
openvas
Oracle Database Server Multiple Unspecified Vulnerabilities -01 (Jan 2016)
2016-01-22 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2018
2018-04-17 00:00:00
Oracle Critical Patch Update - July 2016
2016-07-19 00:00:00
Oracle Critical Patch Update Advisory - July 2017
2018-03-20 00:00:00

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.3 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.2%

JSON
Related for PRION:CVE-2016-3506
atlassian3ibm5veracode1cve1f52nessus1openvas1oracle6