CVE-2016-5504

Unspecified vulnerability in the Oracle Agile Product Lifecycle Management for Process component in Oracle Supply Chain Products Suite 6.1.0.4, 6.1.1.6, and 6.2.0.0 allows local users to affect confidentiality via vectors related to Supplier Portal.

Published: Oct 25, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-5504
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.1
AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 4.7
AV:L/AC:M/Au:N/C:C/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
oracle / agile_product_lifecycle_management_for_process	6.1.1.6	6.1.1.6.x
oracle / agile_product_lifecycle_management_for_process	6.2.0.0	6.2.0.0.x
oracle / agile_product_lifecycle_management_for_process	6.1.0.4	6.1.0.4.x

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.securityfocus.com/bid/93679

Vulnerability Database

289,784

CVE-2016-5504