CVE-2016-3563

MEDIUM

Oracle Enterprise Manager Grid Control <12.1.0.5 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Enterprise Manager Base Platform component in Oracle Enterprise Manager Grid Control 12.1.0.5 allows local users to affect confidentiality and integrity via vectors related to Security Framework, a different vulnerability than CVE-2016-5604.

References (4)

[Patch, Vendor Advisory] http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91787

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1036406

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91880

Scores

CVSS v3 6.3

EPSS 0.0011

EPSS Percentile 28.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N

Classification

Status draft

Affected Products (1)

oracle/enterprise_manager_base_platform

Timeline

Published Jul 21, 2016

Tracked Since Feb 18, 2026