Vulnerability Description
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer Faces.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Weblogic Server | 10.3.6.0.0 |
References
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/93708
- http://www.securitytracker.com/id/1037052
- http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/93708
- http://www.securitytracker.com/id/1037052
FAQ
What is CVE-2016-3505?
CVE-2016-3505 is a vulnerability with a CVSS score of 8.8 (HIGH). Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, a...
How severe is CVE-2016-3505?
CVE-2016-3505 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-3505?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Weblogic Server.