Main Vulnerability Database Vulnerabilities #VU2624

#VU2624 Information disclosure in Oracle Outside In Technology - CVE-2016-3574

Published: November 30, -0001 / Updated: November 22, 2018

Vulnerability identifier: #VU2624

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2016-3574

CWE-ID: CWE-200

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Oracle Outside In Technology

Software vendor:
Oracle

Description

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists due to a flaw in the Outside In Technology Outside In Filters component. A remote attacker can gain access to potentially sensitive data.

Successful exploitation of the vulnerability results in information disclosure on the vulnerable system.

Remediation

Install update from vendor's website.

External links

http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html

#VU2624 Information disclosure in Oracle Outside In Technology - CVE-2016-3574

Description

Remediation

External links

Please verify you're human