Vulnerability Description
Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Monitoring and Diagnostics.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Jd Edwards Products | 9.1 |
References
- http://packetstormsecurity.com/files/138511/JD-Edwards-9.1-EnterpriseOne-Server-
- http://seclists.org/fulldisclosure/2016/Aug/129
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlVendor Advisory
- http://www.securitytracker.com/id/1034722
- http://packetstormsecurity.com/files/138511/JD-Edwards-9.1-EnterpriseOne-Server-
- http://seclists.org/fulldisclosure/2016/Aug/129
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.htmlVendor Advisory
- http://www.securitytracker.com/id/1034722
FAQ
What is CVE-2016-0425?
CVE-2016-0425 is a vulnerability with a CVSS score of 6.0 (MEDIUM). Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality, integrity, and availabi...
How severe is CVE-2016-0425?
CVE-2016-0425 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-0425?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Jd Edwards Products.