CVE-2016-0540Oracle Configurator vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.3%
top 44.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Configurator
Timeline
PublishedJan 21
Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 11.5.10.2, 12.1, and 12.2 allows remote attackers to affect confidentiality via unknown vectors related to UI Servlet, a different vulnerability than CVE-2016-0541.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDoracle/configurator11.5.10.2, 12.1, 12.2+2

🔴Vulnerability Details

2
GHSA
GHSA-5q28-759p-xwrx: Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 112022-05-17
CVEList
CVE-2016-0540: Unspecified vulnerability in the Oracle Configurator component in Oracle Supply Chain Products Suite 112016-01-21
CVE-2016-0540 — Oracle Configurator vulnerability | cvebase