CVE-2016-3547 — Oracle One-to-one Fulfillment vulnerability

3 documents3 sources

Severity

5.3MEDIUMNVD

EPSS

0.4%

top 37.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle One-to-one Fulfillment

Timeline

PublishedJul 21

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle One-to-One Fulfillment component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality via vectors related to Content Manager.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

▶NVDoracle/one-to-one_fulfillment6 versions+5

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-pjgj-h64x-5jpg: Unspecified vulnerability in the Oracle One-to-One Fulfillment component in Oracle E-Business Suite 12↗2022-05-17

▶

CVEList

CVE-2016-3547: Unspecified vulnerability in the Oracle One-to-One Fulfillment component in Oracle E-Business Suite 12↗2016-07-21

▶