5.7
CVE-2016-5602
- EPSS 0.21%
- Published 25.10.2016 14:31:14
- Last modified 12.04.2025 10:46:40
- Source secalert_us@oracle.com
- Teams watchlist Login
- Open Login
Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, 12.1.3.0.0, 12.2.1.0.0, and 12.2.1.1.0 allows remote authenticated users to affect confidentiality via vectors related to Code Generation Engine.
Data is provided by the National Vulnerability Database (NVD)
Oracle ≫ Data Integrator Version11.1.1.7.0
Oracle ≫ Data Integrator Version11.1.1.9.0
Oracle ≫ Data Integrator Version12.1.3.0.0
Oracle ≫ Data Integrator Version12.2.1.0.0
Oracle ≫ Data Integrator Version12.2.1.1.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.21% | 0.407 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.7 | 2.1 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N
|
| nvd@nist.gov | 3.5 | 6.8 | 2.9 |
AV:N/AC:M/Au:S/C:P/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.