vulnerability

Oracle WebLogic: CVE-2016-3505 : Critical Patch Update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
9	(AV:N/AC:L/Au:S/C:C/I:C/A:C)	Oct 25, 2016	Apr 5, 2018	Sep 13, 2018

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:C)

Published

Oct 25, 2016

Added

Apr 5, 2018

Modified

Sep 13, 2018

Description

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer Faces.

Solutions

oracle-weblogic-oct-2016-cpu-10_3_6_0_0oracle-weblogic-oct-2016-cpu-12_1_3_0_0oracle-weblogic-oct-2016-cpu-12_2_1_0_0

References

BID-93708
CVE-2016-3505
https://attackerkb.com/topics/CVE-2016-3505
URL-http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
URL-https://support.oracle.com/rs?type=doc&id=2171485.1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today