NVD

Id
84567  
Name
CVE-2017-3556  
Description
Vulnerability in the Oracle Application Object Library component of Oracle E-Business Suite (subcomponent: File Management). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Application Object Library. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Application Object Library accessible data. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-07-18  
Published
2017-04-24  
Modified Date
2017-07-17  
Seq
2017-3556  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
417092 84567 CVE-2017-2324 97604  View
417093 84567 CVE-2017-2324 https://kb.juniper.net/JSA10783  View
417094 84567 CVE-2017-2324 97604  View
417095 84567 CVE-2017-2324 https://kb.juniper.net/JSA10783  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
67171 JVNDB-2017-003483 Oracle E-Business Suite の Oracle Application Object Library における File Management に関する脆弱性 Oracle E-Business Suite の Oracle Application Object Library には、File Management に関する処理に不備があるため、機密性に影響のある脆弱性が存在します。 CVE-2017-3556 0 CVE-2017-3556 84567 5 5.3 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-003483.html 2017-04-18 2017-05-29 View