PT-2016-4186 · Oracle · Oracle Bi Publisher+1

Published

2016-01-21

Updated

2017-09-10

CVE-2016-0401

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware versions 11.1.1.7.0 through 11.1.1.9.0

Description The issue affects the integrity of the system, related to the Scheduler component in the Oracle BI Publisher. The exact nature of the vulnerability and the vectors used for exploitation are not specified.

Recommendations For Oracle Fusion Middleware version 11.1.1.7.0, update to a version that includes the fix for this issue. For Oracle Fusion Middleware version 11.1.1.9.0, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Scheduler component until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2016-0401

Affected Products

Oracle Bi Publisher

Oracle Fusion Middleware

PT-2016-4186 · Oracle · Oracle Bi Publisher+1

CVE-2016-0401

Related Identifiers

Affected Products

References · 4