CVE-2016-3432

MEDIUM

Oracle Fusion Middleware <11.1.1.9.0 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Web Server.

References (4)

Scores

CVSS v3 5.4
EPSS 0.0024
EPSS Percentile 47.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Classification

Status draft

Affected Products (2)

oracle/business_intelligence_publisher
oracle/business_intelligence_publisher

Timeline

Published Jul 21, 2016
Tracked Since Feb 18, 2026