ID CVE-2016-0432
Summary Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-4808, CVE-2015-6013, CVE-2015-6014, and CVE-2015-6015. Per Oracle: Outside In Technology is a suite of software development kits (SDKs). It does not have any particular associated protocol. If the hosting software passes data received over the network to Outside In Technology code, the CVSS Base Score would increase to 6.8.
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:fusion_middleware:8.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:8.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:8.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:8.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:8.5.2:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:8.5.2:*:*:*:*:*:*:*
CVSS
Base: 1.9 (as of 10-09-2017 - 01:29)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:L/AC:M/Au:N/C:N/I:N/A:P
refmap via4
confirm http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
sectrack 1034711
Last major update 10-09-2017 - 01:29
Published 21-01-2016 - 02:59
Last modified 10-09-2017 - 01:29
Back to Top