Oracle Agile Product Lifecycle Management vulnerabilities
56 known vulnerabilities affecting oracle/agile_product_lifecycle_management.
Total CVEs
56
CISA KEV
2
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL2HIGH16MEDIUM34LOW4
Vulnerabilities
Page 2 of 3
CVE-2017-10093MEDIUMCVSS 5.3v9.3.5v9.3.62017-08-08
CVE-2017-10093 [MEDIUM] CWE-200 CVE-2017-10093: Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent:
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Security). Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks of this vulnerability can result in
nvd
CVE-2017-10082MEDIUMCVSS 6.1v9.3.5v9.3.62017-08-08
CVE-2017-10082 [MEDIUM] CVE-2017-10082: Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent:
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Security). Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks require human interaction from a person othe
nvd
CVE-2017-10094MEDIUMCVSS 5.4v9.3.5v9.3.62017-08-08
CVE-2017-10094 [MEDIUM] CWE-269 CVE-2017-10094: Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent:
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Security). Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attacks require human interaction from a pers
nvd
CVE-2017-10088LOWCVSS 3.4v9.3.5v9.3.62017-08-08
CVE-2017-10088 [LOW] CVE-2017-10088: Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent:
Vulnerability in the Oracle Agile PLM component of Oracle Supply Chain Products Suite (subcomponent: Security). Supported versions that are affected are 9.3.5 and 9.3.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle Agile PLM executes to compromise Oracle Agile PLM. Successful attacks of this vul
nvd
CVE-2016-5526HIGHCVSS 7.3v9.3.4v9.3.52016-10-25
CVE-2016-5526 [HIGH] CWE-284 CVE-2016-5526: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Apache Tomcat.
nvd
CVE-2016-5515HIGHCVSS 8.8v9.3.4v9.3.52016-10-25
CVE-2016-5515 [HIGH] CVE-2016-5515: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to RMIServlet.
nvd
CVE-2016-5523HIGHCVSS 8.8v9.3.4v9.3.52016-10-25
CVE-2016-5523 [HIGH] CVE-2016-5523: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to AutoVue Java Applet.
nvd
CVE-2016-5514HIGHCVSS 8.8v9.3.4v9.3.52016-10-25
CVE-2016-5514 [HIGH] CVE-2016-5514: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to ExportServlet.
nvd
CVE-2016-5513MEDIUMCVSS 4.3v9.3.4v9.3.52016-10-25
CVE-2016-5513 [MEDIUM] CWE-200 CVE-2016-5513: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via vectors related to File Manager.
nvd
CVE-2016-5510MEDIUMCVSS 5.3v9.3.4v9.3.52016-10-25
CVE-2016-5510 [MEDIUM] CWE-200 CVE-2016-5510: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors.
nvd
CVE-2016-5524MEDIUMCVSS 5.3v9.3.4v9.3.52016-10-25
CVE-2016-5524 [MEDIUM] CWE-200 CVE-2016-5524: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5527.
nvd
CVE-2016-5521MEDIUMCVSS 6.5v9.3.4v9.3.52016-10-25
CVE-2016-5521 [MEDIUM] CVE-2016-5521: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5512.
nvd
CVE-2016-5522MEDIUMCVSS 4.3v9.3.4v9.3.52016-10-25
CVE-2016-5522 [MEDIUM] CWE-200 CVE-2016-5522: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality via unknown vectors.
nvd
CVE-2016-5527MEDIUMCVSS 5.9v9.3.4v9.3.52016-10-25
CVE-2016-5527 [MEDIUM] CVE-2016-5527: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality via unknown vectors, a different vulnerability than CVE-2016-5524.
nvd
CVE-2016-5512MEDIUMCVSS 6.1v9.3.4v9.3.52016-10-25
CVE-2016-5512 [MEDIUM] CWE-79 CVE-2016-5512: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2016-5521.
nvd
CVE-2016-3556CRITICALCVSS 9.8v9.3.4v9.3.52016-07-21
CVE-2016-3556 [CRITICAL] CVE-2016-3556: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to EM Integration.
nvd
CVE-2016-3554HIGHCVSS 8.8v9.3.4v9.3.52016-07-21
CVE-2016-3554 [HIGH] CVE-2016-3554: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to PC / BOM, MCAD, and Design.
nvd
CVE-2016-3530HIGHCVSS 7.1v9.3.4v9.3.52016-07-21
CVE-2016-3530 [HIGH] CVE-2016-3530: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors related to PGC / Import.
nvd
CVE-2016-3538HIGHCVSS 7.1v9.3.4v9.3.52016-07-21
CVE-2016-3538 [HIGH] CVE-2016-3538: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect integrity and availability via vectors related to File Folders / Attachment, a different vulnerability than CVE-2016-3539.
nvd
CVE-2016-3561HIGHCVSS 7.3v9.3.4v9.3.52016-07-21
CVE-2016-3561 [HIGH] CVE-2016-3561: Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SDK.
nvd