ID CVE-2016-3472
Summary Unspecified vulnerability in the Siebel Engineering - Installer and Deployment component in Oracle Siebel CRM 8.1.1, 8.2.2, IP2014, IP2015, and IP2016 allows remote authenticated users to affect confidentiality via vectors related to Web Server.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:8.1.1
    cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:8.1.1
  • cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:8.2.2
    cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:8.2.2
  • cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:2014
    cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:2014
  • cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:2015
    cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:2015
  • cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:2016
    cpe:2.3:a:oracle:siebel_engineering-installer_and_deployment:2016
CVSS
Base: 3.5 (as of 15-08-2016 - 11:20)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK MEDIUM SINGLE_INSTANCE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
refmap via4
bid
  • 91787
  • 91978
confirm http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
sectrack 1036400
Last major update 28-11-2016 - 15:09
Published 21-07-2016 - 06:12
Last modified 31-08-2017 - 21:29
Back to Top