nvd-json-data-feeds/CVE-2016/CVE-2016-34xx/CVE-2016-3455.json

{
  "id": "CVE-2016-3455",
  "sourceIdentifier": "secalert_us@oracle.com",
  "published": "2016-04-21T11:00:36.510",
  "lastModified": "2016-12-03T03:27:07.717",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Outside In Filters."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en el componente Oracle Outside en Technology en Oracle Fusion Middleware 8.5.0, 8.5.1 y 8.5.2 permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores relacionados con Outside In Filters."
    }
  ],
  "metrics": {
    "cvssMetricV30": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.0",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "LOW",
          "availabilityImpact": "LOW",
          "baseScore": 8.6,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 4.7
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 9.0
        },
        "baseSeverity": "HIGH",
        "exploitabilityScore": 10.0,
        "impactScore": 8.5,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:outside_in_technology:8.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E19479D6-0751-4450-8AAF-A1966149C415"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:outside_in_technology:8.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "51D3FA86-8366-47EB-8F9B-A63F6B140241"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:oracle:outside_in_technology:8.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "05232480-EB9C-4882-9F54-D32996D20657"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html",
      "source": "secalert_us@oracle.com",
      "tags": [
        "Vendor Advisory"
      ]
    },
    {
      "url": "http://www.securityfocus.com/bid/86437",
      "source": "secalert_us@oracle.com"
    },
    {
      "url": "http://www.securitytracker.com/id/1035618",
      "source": "secalert_us@oracle.com"
    }
  ]
}