Vulnerability Details CVE-2016-3504
Unspecified vulnerability in the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to ADF Faces.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- http://www.securityfocus.com/bid/91787
- http://www.securityfocus.com/bid/92023
- http://www.securitytracker.com/id/1036370
- http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
- http://www.securityfocus.com/bid/91787
- http://www.securityfocus.com/bid/92023
- http://www.securitytracker.com/id/1036370
Products affected by CVE-2016-3504
-
cpe:2.3:a:oracle:jdeveloper:11.1.1.7.0
-
cpe:2.3:a:oracle:jdeveloper:11.1.1.9.0
-
cpe:2.3:a:oracle:jdeveloper:11.1.2.4.0
-
cpe:2.3:a:oracle:jdeveloper:12.1.3.0.0
-
cpe:2.3:a:oracle:jdeveloper:12.2.1.0.0