CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,345 vulnerabilities with CWE-284
CVE-2016-5587 HIGH
Oracle E-Business Suite <12.2.4 - Info Disclosure
CVSS 8.2
CVE-2016-5586 HIGH
Oracle E-Business Suite <12.2.6 - Info Disclosure
CVSS 8.2
CVE-2016-5585 MEDIUM
Oracle E-Business Suite <12.1.4 - Info Disclosure
CVSS 6.5
CVE-2016-5582 CRITICAL
Oracle Java SE <8 - Info Disclosure
CVSS 9.6
CVE-2016-5581 MEDIUM
Oracle E-Business Suite <12.2.6 - Info Disclosure
CVSS 6.6
CVE-2016-5580 CRITICAL
Oracle Virtualization <5.2 - Info Disclosure
CVSS 9.6
CVE-2016-5579 HIGH
Oracle Fusion Middleware <8.5.3 - Info Disclosure
CVSS 8.6
CVE-2016-5578 HIGH
Oracle Fusion Middleware <8.5.3 - Info Disclosure
CVSS 8.6
CVE-2016-5577 HIGH
Oracle Outside In Technology 8.4.0-8.5.3 - Info Disclosure
CVSS 8.6
CVE-2016-5576 MEDIUM
Oracle Solaris 11.3 - Denial of Service in Kernel Zones
CVSS 5.5
CVE-2016-5575 MEDIUM
Oracle E-Business Suite <12.2.7 - Info Disclosure
CVSS 5.3
CVE-2016-5574 HIGH
Oracle Fusion Middleware <8.5.3 - Info Disclosure
CVSS 8.6
CVE-2016-5571 MEDIUM
Oracle Applications DBA - Info Disclosure
CVSS 6.5
CVE-2016-5570 MEDIUM
Oracle E-Business Suite <12.2.7 - Info Disclosure
CVSS 6.5
CVE-2016-5569 MEDIUM
Oracle FLEXCUBE Enterprise Limits and Collateral Management 12.0.0, 12.1.0 - Authenticated Improper Access Control
CVSS 5.4
CVE-2016-5568 CRITICAL
Oracle Java SE <8 - Info Disclosure
CVSS 9.6
CVE-2016-5566 MEDIUM
Oracle Sun Solaris 11.3 - Info Disclosure
CVSS 5.3
CVE-2016-5565 HIGH
Oracle Hospitality OPERA - Info Disclosure
CVSS 7.7
CVE-2016-5562 HIGH
Oracle E-Business Suite <12.2.6 - Info Disclosure
CVSS 7.6
CVE-2016-5560 MEDIUM
Oracle Siebel CRM 16.1 - Authenticated Improper Access Control in OpenUI
CVSS 5.4
CVE-2016-5557 HIGH
Oracle Advanced Pricing 12.1.1-12.1.3, 12.2.3-12.2.6 - Improper Access Control
CVSS 8.2
CVE-2016-5556 CRITICAL
Oracle JDK and JRE - Remote Code Execution via 2D Component
CVSS 9.6
CVE-2016-5536 HIGH
Oracle Platform Security for Java 12.1.3.0.0, 12.2.1.0.0, 12.2.1.1.0 - Authenticated Improper Access Control
CVSS 7.6
CVE-2016-5534 MEDIUM
Oracle Siebel CRM 16.1 - Authenticated Improper Access Control in Customer Order Management
CVSS 6.5
CVE-2016-5533 MEDIUM
Oracle Primavera P6 Enterprise Project Portfolio Management 8.4, 15.x, 16.x - Authenticated Improper Access Control
CVSS 5.4
Details
Vulnerabilities 5,345