nvd-json-data-feeds/CVE-2016/CVE-2016-55xx/CVE-2016-5594.json

{
  "id": "CVE-2016-5594",
  "sourceIdentifier": "secalert_us@oracle.com",
  "published": "2016-10-25T14:31:04.890",
  "lastModified": "2017-07-29T01:34:12.880",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, and 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality via vectors related to INFRA."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en el componente Oracle FLEXCUBE Universal Banking en Oracle Financial Services Applications 11.3.0, 11.4.0 y 12.0.1 hasta la versi\u00f3n 12.0.3 permite a usuarios remotos autenticados afectar la confidencialidad a trav\u00e9s de vectores relacionados con INFRA."
    }
  ],
  "metrics": {
    "cvssMetricV30": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.0",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "CHANGED",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 3.1,
        "impactScore": 1.4
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:N/A:N",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.0
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.0,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-284"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:flexcube_universal_banking:11.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "BDAB2438-6836-4632-A344-3486F0661D17"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:flexcube_universal_banking:11.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4703D070-2171-4501-9EF1-A417AB111D95"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:flexcube_universal_banking:12.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "501D0455-4A7E-496A-9D92-CD2A0E9ECC62"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:flexcube_universal_banking:12.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "097B84AB-C16F-48B4-BFCE-DB87D607EC5C"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:flexcube_universal_banking:12.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "77C313ED-A2A5-4BD2-B88F-F8F5DA2DAFAF"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html",
      "source": "secalert_us@oracle.com",
      "tags": [
        "Vendor Advisory",
        "Patch"
      ]
    },
    {
      "url": "http://www.securityfocus.com/bid/93616",
      "source": "secalert_us@oracle.com"
    },
    {
      "url": "http://www.securitytracker.com/id/1037049",
      "source": "secalert_us@oracle.com"
    }
  ]
}