CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3491
https://notcve.org/view.php?id=CVE-2016-3491
Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Wireless Framework. NOTE: the previous information is from the July 2016 CPU. Oracle has not commented on third-party claims that this issue is a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad no especificada en el componente Oracle CRM Technical Foundation en Oracle E-Business Suite 12.1.3 permite a atacantes remotos afectar la confidencialidad y la integridad a través de vectores relacionados con Wireless Framework. NOTA: la información anterior es de la CPU de Julio 2016. • http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html http://www.securityfocus.com/bid/91787 http://www.securityfocus.com/bid/91848 http://www.securitytracker.com/id/1036403 https://www.onapsis.com/blog/oracle-fixes-record-276-vulnerabilities-july-2016 •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3535
https://notcve.org/view.php?id=CVE-2016-3535
Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Remote Launch. NOTE: the previous information is from the July 2016 CPU. Oracle has not commented on third-party claims that this issue is a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad no especificada en el componente Oracle CRM Technical Foundation en Oracle E-Business Suite 12.1.3 permite a atacantes remotos afectar la confidencialidad y la integridad a través de vectores relacionados con Remote Launch. NOTA: la información anterior es de la CPU de Julio 2016. • http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html http://www.securityfocus.com/bid/91787 http://www.securityfocus.com/bid/91845 http://www.securitytracker.com/id/1036403 https://www.onapsis.com/blog/oracle-fixes-record-276-vulnerabilities-july-2016 •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3437
https://notcve.org/view.php?id=CVE-2016-3437
Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Person Address Page. Vulnerabilidad no especificada en el componente Oracle CRM Wireless en Oracle E-Business Suite 12.1.3 permite a atacantes remotos afectar a la confidencialidad e integridad a través de vectores relacionados con Person Address Page. • http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html http://www.securitytracker.com/id/1035603 https://www.onapsis.com/research/security-advisories/oracle-e-business-suite-cross-site-scripting-xss-cve-2016-3437 •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2016-3439
https://notcve.org/view.php?id=CVE-2016-3439
Unspecified vulnerability in the Oracle CRM Wireless component in Oracle E-Business Suite 12.1.3 allows remote attackers to affect confidentiality and integrity via vectors related to Call Phone Number Page. Vulnerabilidad no especificada en el componente Oracle CRM Wireless en Oracle E-Business Suite 12.1.3 permite a atacantes remotos afectar a la confidencialidad e integridad a través de vectores relacionados con Call Phone Number Page. • http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html http://www.securitytracker.com/id/1035603 https://www.onapsis.com/research/security-advisories/oracle-e-business-suite-cross-site-scripting-xss-cve-2016-3439 •
CVSS: 6.4EPSS: 0%CPEs: 5EXPL: 0CVE-2016-0532
https://notcve.org/view.php?id=CVE-2016-0532
Unspecified vulnerability in the Oracle CRM Technical Foundation component in Oracle E-Business Suite 11.5.10.2, 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Security Assignments. Vulnerabilidad no especificada en el componente Oracle CRM Technical Foundation en Oracle E-Business Suite 11.5.10.2, 12.1.3, 12.2.3, 12.2.4 y 12.2.5 permite a atacantes remotos afectar a la confidencialidad y la integridad a través de vectores desconocidos relacionados con Security Assignments. • http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html http://www.securitytracker.com/id/1034726 •