Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2016-3506
HistoryJul 21, 2016 - 10:12 a.m.

CVE-2016-3506

2016-07-2110:12:58
[email protected]
web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.9%

JSON

Unspecified vulnerability in the JDBC component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2; the Oracle Retail Xstore Point of Service 5.5, 6.0, 6.5, 7.0, 7.1, 15.0, and 16.0; the Oracle Retail Warehouse Management System 14.04, 14.1.3, and 15.0.1; the Oracle Retail Workforce Management 1.60.7, and 1.64.0; the Oracle Retail Clearance Optimization Engine 13.4; the Oracle Retail Markdown Optimization 13.4 and 14.0; and Oracle Retail Merchandising System 16.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Affected configurations

NVD
Node
oraclejdbcMatch11.2.0.4
OR
oraclejdbcMatch12.1.0.1
OR
oraclejdbcMatch12.1.0.2

Related

atlassian 3
cve 1
veracode 1
cvelist 1
ibm 5
prion 1
f5 2
nessus 1
openvas 1
oracle 6
atlassian
atlassian
Oracle Security Patched DB Driver Not Working
2016-10-05 14:12:31
Oracle Security Patched DB Driver Not Working
2016-10-05 14:12:31
Oracle Security Patched DB Driver Not Working
2016-10-05 14:12:31
cve
cve
CVE-2016-3506
2016-07-21 10:12:58
veracode
veracode
Remote Code Execution (RCE)
2020-08-20 03:04:18
cvelist
cvelist
CVE-2016-3506
2016-07-21 10:00:00
ibm
ibm
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2016-3506)
2020-05-27 08:25:50
Security Bulletin: Due to use of Oracle JDBC component, ITNM is vulnerable to an unspecified vulnerability (CVE-2016-3506)
2023-01-04 16:41:22
Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities (CVE-2016-3506, CVE-2020-13692)
2021-09-30 17:52:51
prion
prion
Code injection
2016-07-21 10:12:00
f5
f5
SOL11100332 - Multiple Oracle Database Server vulnerabilities
2016-09-15 00:00:00
K11100332 : Multiple Oracle Database Server vulnerabilities
2016-09-15 00:00:00
nessus
nessus
Oracle Database Multiple Vulnerabilities (July 2016 CPU) (FREAK)
2016-07-22 00:00:00
openvas
openvas
Oracle Database Server Multiple Unspecified Vulnerabilities -01 (Jan 2016)
2016-01-22 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2018
2018-04-17 00:00:00
Oracle Critical Patch Update - July 2016
2016-07-19 00:00:00
Oracle Critical Patch Update - October 2017
2017-10-17 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.9%

JSON
Related for NVD:CVE-2016-3506
atlassian3cve1veracode1cvelist1ibm5prion1f52nessus1openvas1oracle6