Oracle E-Business Suite vulnerabilities

CVE-2016-0511 [MEDIUM] CVE-2016-0511: Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Common Components, a different vulnerability than CVE-2016-0547, CVE-2016-0548, and CVE-2016-0549.

CVE-2016-0528 [MEDIUM] CVE-2016-0528: Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to User GUI, a different vulnerability than CVE-2016-0527, CVE-2016-0529, and CVE-2016-0530.

CVE-2016-0509 [MEDIUM] CVE-2016-0509: Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 11.5. Unspecified vulnerability in the Oracle Internet Expenses component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to AP Web Utilities.

CVE-2016-0519 [MEDIUM] CVE-2016-0519: Unspecified vulnerability in the Oracle iReceivables component in Oracle E-Business Suite 11.5.10.2 Unspecified vulnerability in the Oracle iReceivables component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to AR Web Utilities, a different vulnerability than CVE-2016-0507.

CVE-2016-0457 [MEDIUM] CVE-2016-0457: Unspecified vulnerability in the Application Mgmt Pack for E-Business Suite component in Oracle E-Bu Unspecified vulnerability in the Application Mgmt Pack for E-Business Suite component in Oracle E-Business Suite 12.1 and 12.2 allows remote attackers to affect confidentiality via vectors related to REST Framework, a different vulnerability than CVE-2016-0456. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-part

CVE-2016-0510 [MEDIUM] CVE-2016-0510: Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite Unspecified vulnerability in the Oracle E-Business Intelligence component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Business Views Catalog.

CVE-2016-0556 [MEDIUM] CVE-2016-0556: Unspecified vulnerability in the Oracle Advanced Collections component in Oracle E-Business Suite 11 Unspecified vulnerability in the Oracle Advanced Collections component in Oracle E-Business Suite 11.5.10.2, 12.1.1, 12.1.2, and 12.1.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Administration, a different vulnerability than CVE-2016-0557.

CVE-2016-0521 [MEDIUM] CVE-2016-0521: Unspecified vulnerability in the Oracle iProcurement component in Oracle E-Business Suite 11.5.10.2 Unspecified vulnerability in the Oracle iProcurement component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to Redirection.

CVE-2016-0514 [MEDIUM] CVE-2016-0514: Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via vectors related to BIS Common Components, a different vulnerability than CVE-2016-0515.

CVE-2016-0512 [MEDIUM] CVE-2016-0512: Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10 Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Self Service - Common Modules.

CVE-2016-0459 [MEDIUM] CVE-2016-0459: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote authenticated users to affect integrity via unknown vectors related to Popup Windows.

CVE-2016-0526 [MEDIUM] CVE-2016-0526: Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 11.5.10.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect integrity via unknown vectors related to Wireless Framework.

CVE-2016-0513 [MEDIUM] CVE-2016-0513: Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suit Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via vectors related to BIS Common Components.

CVE-2016-0518 [MEDIUM] CVE-2016-0518: Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10 Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to General utilities, a different vulnerability than CVE-2016-0517.

CVE-2016-0507 [MEDIUM] CVE-2016-0507: Unspecified vulnerability in the Oracle iReceivables component in Oracle E-Business Suite 11.5.10.2 Unspecified vulnerability in the Oracle iReceivables component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via unknown vectors related to AR Web Utilities, a different vulnerability than CVE-2016-0519.

CVE-2016-0524 [MEDIUM] CVE-2016-0524: Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11 Unspecified vulnerability in the Oracle Universal Work Queue component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Work Provider Administration.

CVE-2016-0527 [MEDIUM] CVE-2016-0527: Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Unspecified vulnerability in the Oracle Customer Interaction History component in Oracle E-Business Suite 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to User GUI, a different vulnerability than CVE-2016-0528, CVE-2016-0529, and CVE-2016-0530.

CVE-2016-0517 [MEDIUM] CVE-2016-0517: Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10 Unspecified vulnerability in the Oracle Human Resources component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to General utilities, a different vulnerability than CVE-2016-0518.

CVE-2016-0516 [MEDIUM] CVE-2016-0516: Unspecified vulnerability in the Oracle Quality component in Oracle E-Business Suite 11.5.10.2 allow Unspecified vulnerability in the Oracle Quality component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect confidentiality and integrity via unknown vectors related to QA / Order Management Integration.

CVE-2016-0575 [MEDIUM] CVE-2016-0575: Unspecified vulnerability in the Oracle Learning Management component in Oracle E-Business Suite 11. Unspecified vulnerability in the Oracle Learning Management component in Oracle E-Business Suite 11.5.10.2 allows remote attackers to affect integrity via vectors related to OTA Self Service.