Filtered by vendor Oracle
Subscribe
Search
Total
8935 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2016-3514 | 1 Oracle | 1 Enterprise Communications Broker | 2017-09-01 | 6.8 MEDIUM | 6.5 MEDIUM |
| Unspecified vulnerability in the Oracle Enterprise Communications Broker component in Oracle Communications Applications before PCz 2.0.0m4p1 allows remote authenticated users to affect confidentiality via vectors related to GUI, a different vulnerability than CVE-2016-3516. | |||||
| CVE-2016-3513 | 1 Oracle | 1 Communications Operations Monitor | 2017-09-01 | 6.8 MEDIUM | 6.5 MEDIUM |
| Unspecified vulnerability in the Oracle Communications Operations Monitor component in Oracle Communications Applications before 3.3.92.0.0 allows remote authenticated users to affect confidentiality via vectors related to Infrastructure. | |||||
| CVE-2016-3512 | 1 Oracle | 1 Customer Interaction History | 2017-09-01 | 7.8 HIGH | 8.2 HIGH |
| Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Function Security. | |||||
| CVE-2016-3509 | 1 Oracle | 1 Agile Product Lifecycle Management Framework | 2017-09-01 | 4.9 MEDIUM | 5.4 MEDIUM |
| Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality and integrity via vectors related to File Folders / URL Attachment. | |||||
| CVE-2016-3507 | 1 Oracle | 1 Agile Product Lifecycle Management Framework | 2017-09-01 | 4.3 MEDIUM | 4.3 MEDIUM |
| Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect integrity via vectors related to WebClient / Admin. | |||||
| CVE-2016-3497 | 1 Oracle | 1 Solaris | 2017-09-01 | 4.9 MEDIUM | 5.5 MEDIUM |
| Unspecified vulnerability in Oracle Sun Solaris 11.3 allows local users to affect availability via vectors related to Kernel, a different vulnerability than CVE-2016-5469 and CVE-2016-5471. | |||||
| CVE-2016-3496 | 1 Oracle | 1 Enterprise Manager For Fusion Middleware | 2017-09-01 | 4.3 MEDIUM | 4.7 MEDIUM |
| Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Enterprise Manager Grid Control 11.1.1.7, and 11.1.1.9 allows remote attackers to affect confidentiality via vectors related to SOA Topology Viewer. | |||||
| CVE-2016-3494 | 1 Oracle | 1 Enterprise Manager Ops Center | 2017-09-01 | 6.1 MEDIUM | 6.5 MEDIUM |
| Unspecified vulnerability in the Enterprise Manager Ops Center component in Oracle Enterprise Manager Grid Control 12.1.4, 12.2.2, and 12.3.2 allows remote attackers to affect availability via vectors related to OS Provisioning. | |||||
| CVE-2016-3493 | 1 Oracle | 1 Hyperion Financial Reporting | 2017-09-01 | 10.0 HIGH | 9.8 CRITICAL |
| Unspecified vulnerability in the Hyperion Financial Reporting component in Oracle Hyperion 11.1.2.4 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Security Models. | |||||
| CVE-2016-3491 | 1 Oracle | 1 Crm Technical Foundation | 2017-09-01 | 8.5 HIGH | 8.2 HIGH |
| Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Wireless Framework. NOTE: the previous information is from the July 2016 CPU. Oracle has not commented on third-party claims that this issue is a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | |||||
| CVE-2016-3490 | 1 Oracle | 1 Transportation Management | 2017-09-01 | 3.5 LOW | 3.0 LOW |
| Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.3.0, 6.3.1, 6.3.2, 6.3.3, 6.3.4, 6.3.5, 6.3.6, 6.3.7, 6.4.0, and 6.4.1 allows remote authenticated users to affect confidentiality via vectors related to Database. | |||||
| CVE-2016-3489 | 1 Oracle | 1 Database | 2017-09-01 | 7.2 HIGH | 6.7 MEDIUM |
| Unspecified vulnerability in the Data Pump Import component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2016-3488 | 1 Oracle | 1 Database | 2017-09-01 | 4.9 MEDIUM | 4.4 MEDIUM |
| Unspecified vulnerability in the DB Sharding component in Oracle Database Server 12.1.0.2 allows local users to affect integrity via unknown vectors. | |||||
| CVE-2016-3480 | 1 Oracle | 1 Solaris Cluster | 2017-09-01 | 4.9 MEDIUM | 4.4 MEDIUM |
| Unspecified vulnerability in the Solaris Cluster component in Oracle Sun Systems Products Suite 3.3 and 4.3 allows local users to affect confidentiality via vectors related to HA for Postgresql. | |||||
| CVE-2016-3479 | 1 Oracle | 1 Database | 2017-09-01 | 7.8 HIGH | 7.5 HIGH |
| Unspecified vulnerability in the Portable Clusterware component in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote attackers to affect availability via unknown vectors. | |||||
| CVE-2016-3478 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-09-01 | 4.3 MEDIUM | 6.1 MEDIUM |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and integrity via vectors related to File Processing. | |||||
| CVE-2016-3476 | 1 Oracle | 1 Knowledge | 2017-09-01 | 6.4 MEDIUM | 6.5 MEDIUM |
| Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote attackers to affect confidentiality and integrity via vectors related to Information Manager Console. | |||||
| CVE-2016-3475 | 1 Oracle | 1 Knowledge | 2017-09-01 | 4.0 MEDIUM | 4.3 MEDIUM |
| Unspecified vulnerability in the Oracle Knowledge component in Oracle Siebel CRM 8.5.x allows remote authenticated users to affect confidentiality via vectors related to Information Manager Console. | |||||
| CVE-2016-3474 | 1 Oracle | 1 Business Intelligence Publisher | 2017-09-01 | 4.3 MEDIUM | 3.7 LOW |
| Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality via vectors related to Security. | |||||
| CVE-2016-3472 | 1 Oracle | 1 Siebel Engineering-installer And Deployment | 2017-09-01 | 3.5 LOW | 5.7 MEDIUM |
| Unspecified vulnerability in the Siebel Engineering - Installer and Deployment component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Web Server. | |||||
| CVE-2016-3470 | 1 Oracle | 1 Transportation Management | 2017-09-01 | 7.5 HIGH | 7.1 HIGH |
| Unspecified vulnerability in the Oracle Transportation Management component in Oracle Supply Chain Products Suite 6.4.1 allows remote authenticated users to affect confidentiality and integrity via vectors related to Install. | |||||
| CVE-2016-3469 | 1 Oracle | 1 Siebel Core-server Framework | 2017-09-01 | 2.1 LOW | 3.3 LOW |
| Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows local users to affect confidentiality via vectors related to Services. | |||||
| CVE-2016-3468 | 1 Oracle | 1 Agile Engineering Data Management | 2017-09-01 | 10.0 HIGH | 9.8 CRITICAL |
| Unspecified vulnerability in the Oracle Agile Engineering Data Management component in Oracle Supply Chain Products Suite 6.1.3.0 and 6.2.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Install. | |||||
| CVE-2016-3467 | 1 Oracle | 1 Application Express | 2017-09-01 | 5.0 MEDIUM | 5.8 MEDIUM |
| Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect availability via unknown vectors. | |||||
| CVE-2016-3453 | 1 Oracle | 1 Solaris | 2017-09-01 | 4.9 MEDIUM | 5.5 MEDIUM |
| Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect availability via vectors related to Kernel. | |||||
| CVE-2016-3451 | 1 Oracle | 1 Integrated Lights Out Manager Firmware | 2017-09-01 | 4.3 MEDIUM | 4.7 MEDIUM |
| Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote attackers to affect integrity via vectors related to Web. | |||||
| CVE-2016-3450 | 1 Oracle | 1 Siebel Core-server Framework | 2017-09-01 | 4.3 MEDIUM | 3.7 LOW |
| Unspecified vulnerability in the Siebel Core - Server Framework component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote attackers to affect confidentiality via vectors related to Services, a different vulnerability than CVE-2016-5460 and CVE-2016-5466. | |||||
| CVE-2016-3448 | 1 Oracle | 1 Application Express | 2017-09-01 | 5.8 MEDIUM | 6.1 MEDIUM |
| Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0.4 allows remote attackers to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2016-3446 | 1 Oracle | 1 Business Intelligence | 2017-09-01 | 7.5 HIGH | 8.3 HIGH |
| Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Analytics Web Administration. | |||||
| CVE-2016-3444 | 1 Oracle | 1 Retail Integration Bus | 2017-09-01 | 10.0 HIGH | 9.8 CRITICAL |
| Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Install. | |||||
| CVE-2016-3487 | 1 Oracle | 1 Webcenter Sites | 2017-09-01 | 10.0 HIGH | 8.1 HIGH |
| Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2016-3484 | 1 Oracle | 1 Database | 2017-09-01 | 3.2 LOW | 3.4 LOW |
| Unspecified vulnerability in the Database Vault component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2016-3440 | 1 Oracle | 1 Mysql | 2017-09-01 | 4.0 MEDIUM | 7.7 HIGH |
| Unspecified vulnerability in Oracle MySQL 5.7.11 and earlier allows remote authenticated users to affect availability via vectors related to Server: Optimizer. | |||||
| CVE-2016-3483 | 1 Oracle | 1 Peoplesoft Enterprise Peopletools | 2017-09-01 | 6.4 MEDIUM | 7.2 HIGH |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Products 8.53, 8.54, and 8.55 allows remote attackers to affect confidentiality and availability via vectors related to File Processing. | |||||
| CVE-2016-3433 | 1 Oracle | 1 Business Intelligence | 2017-09-01 | 4.9 MEDIUM | 5.4 MEDIUM |
| Unspecified vulnerability in the Oracle Business Intelligence Enterprise Edition component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Analytics Web Administration. | |||||
| CVE-2016-3432 | 1 Oracle | 1 Business Intelligence Publisher | 2017-09-01 | 4.9 MEDIUM | 5.4 MEDIUM |
| Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Web Server. | |||||
| CVE-2016-3424 | 1 Oracle | 1 Mysql | 2017-09-01 | 4.0 MEDIUM | 4.9 MEDIUM |
| Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows remote administrators to affect availability via vectors related to Server: Optimizer. | |||||
| CVE-2016-3482 | 1 Oracle | 1 Http Server | 2017-09-01 | 5.0 MEDIUM | 3.7 LOW |
| Unspecified vulnerability in the Oracle HTTP Server component in Oracle Fusion Middleware 11.1.1.9 and 12.1.3.0 allows remote attackers to affect confidentiality via vectors related to SSL/TLS Module. | |||||
| CVE-2016-3481 | 1 Oracle | 1 Integrated Lights Out Manager Firmware | 2017-09-01 | 4.0 MEDIUM | 7.7 HIGH |
| Unspecified vulnerability in the ILOM component in Oracle Sun Systems Products Suite 3.0, 3.1, and 3.2 allows remote authenticated users to affect availability via vectors related to Web. | |||||
| CVE-2016-3504 | 1 Oracle | 1 Jdeveloper | 2017-09-01 | 7.5 HIGH | 9.8 CRITICAL |
| Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to ADF Faces. | |||||
| CVE-2016-3502 | 1 Oracle | 1 Webcenter Sites | 2017-09-01 | 6.0 MEDIUM | 6.5 MEDIUM |
| Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8 and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2016-5443 | 1 Oracle | 1 Mysql | 2017-09-01 | 1.2 LOW | 4.7 MEDIUM |
| Unspecified vulnerability in Oracle MySQL 5.7.12 and earlier allows local users to affect availability via vectors related to Server: Connection. | |||||
| CVE-2014-0407 | 1 Oracle | 1 Vm Virtualbox | 2017-08-29 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0405. | |||||
| CVE-2014-0405 | 1 Oracle | 1 Vm Virtualbox | 2017-08-29 | 3.5 LOW | N/A |
| Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0407. | |||||
| CVE-2014-0404 | 1 Oracle | 1 Vm Virtualbox | 2017-08-29 | 2.4 LOW | N/A |
| Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0406. | |||||
| CVE-2014-0397 | 1 Oracle | 1 Solaris | 2017-08-29 | 10.0 HIGH | N/A |
| Multiple unspecified vulnerabilities in libXtsol in Oracle Solaris 10 and 11.1 have unspecified impact and attack vectors related to "Buffer errors." | |||||
| CVE-2014-0430 | 1 Oracle | 1 Mysql | 2017-08-29 | 2.8 LOW | N/A |
| Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema. | |||||
| CVE-2014-0427 | 1 Oracle | 1 Mysql | 2017-08-29 | 3.5 LOW | N/A |
| Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.6.13 and earlier allows remote authenticated users to affect availability via vectors related to FTS. | |||||
| CVE-2014-0406 | 1 Oracle | 1 Vm Virtualbox | 2017-08-29 | 2.4 LOW | N/A |
| Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 3.2.20, 4.0.22, 4.1.30, 4.2.20, and 4.3.4 allows local users to affect integrity and availability via unknown vectors related to Core, a different vulnerability than CVE-2014-0404. | |||||
| CVE-2014-0419 | 1 Oracle | 1 Virtualization Secure Global Desktop | 2017-08-29 | 5.1 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Secure Global Desktop (SGD) component in Oracle Virtualization SGD before 4.63 with December 2013 PSU, 4.71, 5.0 with December 2013 PSU, and 5.10 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration Console and Workspace Web Applications. | |||||