Lucene search

OracleCVE-2016-0470

HistoryJan 21, 2016 - 3:00 a.m.

CVE-2016-0470

2016-01-2103:00:17

oracle

web.nvd.nist.gov

cve-2016-0470

oracle fusion middleware

bi publisher security

vulnerability.

CVSS2

5.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

36.5%

JSON

Unspecified vulnerability in the Oracle BI Publisher component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to BI Publisher Security.

Affected configurations

Nvd

Node

oraclefusion_middlewareMatch11.1.1.7.0

oraclefusion_middlewareMatch11.1.1.9

oraclefusion_middlewareMatch12.2.1

VendorProductVersionCPE
oraclefusion_middleware11.1.1.7.0cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.0:*:*:*:*:*:*:*
oraclefusion_middleware11.1.1.9cpe:2.3:a:oracle:fusion_middleware:11.1.1.9:*:*:*:*:*:*:*
oraclefusion_middleware12.2.1cpe:2.3:a:oracle:fusion_middleware:12.2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	fusion_middleware	11.1.1.7.0	cpe:2.3:a:oracle:fusion_middleware:11.1.1.7.0:::::::*
oracle	fusion_middleware	11.1.1.9	cpe:2.3:a:oracle:fusion_middleware:11.1.1.9:::::::*
oracle	fusion_middleware	12.2.1	cpe:2.3:a:oracle:fusion_middleware:12.2.1:::::::*

References

www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

www.securitytracker.com/id/1034711

CVSS2

5.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

36.5%

JSON

Related for CVE-2016-0470