PT-2016-6509 · Oracle · Oracle Supply Chain Products Suite+2

Published

2016-10-25

Updated

2016-11-28

CVE-2016-5523

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Oracle Supply Chain Products Suite versions 9.3.4 through 9.3.5

Description The issue affects confidentiality, integrity, and availability. It is related to vectors involving the AutoVue Java Applet in the Oracle Agile PLM component. Remote authenticated users can exploit this issue.

Recommendations For versions 9.3.4 and 9.3.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2016-5523

Affected Products

Autovue Java Applet

Oracle Agile Plm

Oracle Supply Chain Products Suite

PT-2016-6509 · Oracle · Oracle Supply Chain Products Suite+2

CVE-2016-5523

Related Identifiers

Affected Products

References · 4