CVE-2016-3496

MEDIUM

Oracle Enterprise Manager <11.1.1.9 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Enterprise Manager for Fusion Middleware component in Oracle Enterprise Manager Grid Control 11.1.1.7, and 11.1.1.9 allows remote attackers to affect confidentiality via vectors related to SOA Topology Viewer.

References (4)

[Patch, Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91787

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91887

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1036406

Scores

CVSS v3 4.7

EPSS 0.0033

EPSS Percentile 55.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N

Classification

Status draft

Affected Products (2)

oracle/enterprise_manager_for_fusion_middleware

Timeline

Published Jul 21, 2016

Tracked Since Feb 18, 2026