1. Home
  2. CVE Database
  3. CVE-2016-3447
MEDIUM · 6.9

CVE-2016-3447

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity v...

Vulnerability Description

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to OAF Core.

CVSS Score

6.9

MEDIUM

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:L/A:N
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality
HIGH
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
OracleApplications Framework12.1.3

References

FAQ

What is CVE-2016-3447?

CVE-2016-3447 is a vulnerability with a CVSS score of 6.9 (MEDIUM). Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity v...

How severe is CVE-2016-3447?

CVE-2016-3447 has been rated MEDIUM with a CVSS base score of 6.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-3447?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Applications Framework.