CVE-2016-0538

Name of the Vulnerable Software and Affected Versions Oracle E-Business Suite versions 11.5.10.2, 12.1.1, 12.1.2, 12.1.3

Description The issue affects confidentiality and is related to Business Intelligence in the Oracle Financial Consolidation Hub component. The estimated number of potentially affected devices worldwide is not specified. Details about real-world incidents where this issue was exploited are not provided.

Recommendations For Oracle E-Business Suite version 11.5.10.2, update to a version that includes the fix for this issue. For Oracle E-Business Suite version 12.1.1, update to a version that includes the fix for this issue. For Oracle E-Business Suite version 12.1.2, update to a version that includes the fix for this issue. For Oracle E-Business Suite version 12.1.3, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Business Intelligence component in the Oracle Financial Consolidation Hub until a patch is available.