CVE-2016-5599

CRITICAL

Oracle Supply Chain Products Suite <12.2.5 - Info Disclosure

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in the Oracle Advanced Supply Chain Planning component in Oracle Supply Chain Products Suite 12.2.3 through 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to MscObieeSrvlt.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/93619

Scores

CVSS v3 9.1
EPSS 0.0196
EPSS Percentile 77.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-284
Status published
Products (3)
oracle/advanced_supply_chain_planning 12.2.3
oracle/advanced_supply_chain_planning 12.2.4
oracle/advanced_supply_chain_planning 12.2.5
Published Oct 25, 2016
Tracked Since Feb 18, 2026