CVE-2016-5581Improper Access Control in Oracle Irecruitment

CWE-284Improper Access Control4 documents4 sources
Severity
6.6MEDIUMNVD
EPSS
0.0%
top 85.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Irecruitment
Timeline
PublishedOct 25
Latest updateMay 17

Description

Unspecified vulnerability in the Oracle iRecruitment component in Oracle E-Business Suite 12.1.1 through 12.1.3 and 12.2.3 through 12.2.6 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

CVSS vector

CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 0.7 | Impact: 5.9

Affected Packages1 packages

NVDoracle/irecruitment7 versions+6

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-h2pg-7mcw-fhcm: Unspecified vulnerability in the Oracle iRecruitment component in Oracle E-Business Suite 122022-05-17
CVEList
CVE-2016-5581: Unspecified vulnerability in the Oracle iRecruitment component in Oracle E-Business Suite 122016-10-25
CVE-2016-5581 — Improper Access Control in Oracle | cvebase