Vulnerability Details CVE-2016-3551
Unspecified vulnerability in the Oracle Web Services component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, and 12.2.1.0.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAXWS Web Services Stack.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.038
EPSS Ranking 87.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.securityfocus.com/bid/93658
- http://www.securitytracker.com/id/1037051
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
- http://www.securityfocus.com/bid/93658
- http://www.securitytracker.com/id/1037051
Products affected by CVE-2016-3551
-
cpe:2.3:a:oracle:weblogic_server:11.1.1.7.0
-
cpe:2.3:a:oracle:weblogic_server:11.1.1.9.0
-
cpe:2.3:a:oracle:weblogic_server:12.1.3.0.0
-
cpe:2.3:a:oracle:weblogic_server:12.2.1.0.0