Vulnerability Details : CVE-2016-3590
Unspecified vulnerability in the Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Outside In Filters, a different vulnerability than CVE-2016-3574, CVE-2016-3575, CVE-2016-3576, CVE-2016-3577, CVE-2016-3578, CVE-2016-3579, CVE-2016-3580, CVE-2016-3581, CVE-2016-3582, CVE-2016-3583, CVE-2016-3591, CVE-2016-3592, CVE-2016-3593, CVE-2016-3594, CVE-2016-3595, and CVE-2016-3596.
Products affected by CVE-2016-3590
- cpe:2.3:a:oracle:outside_in_technology:8.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:outside_in_technology:8.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:outside_in_technology:8.5.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-3590
0.44%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 75 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-3590
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:P/A:P |
10.0
|
8.5
|
NIST | |
8.6
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L |
3.9
|
4.7
|
NIST |
References for CVE-2016-3590
-
http://www.securityfocus.com/bid/91787
Oracle July 2016 Critical Patch Update Multiple VulnerabilitiesThird Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/91935
Oracle Fusion Middleware CVE-2016-3590 Remote Security Vulnerability
-
http://www-01.ibm.com/support/docview.wss?uid=swg21988009
IBM Security Bulletin: Vulnerabilities in Oracle Outside In Technology affect IBM WebSphere Portal (July 2016 CPU)
-
http://www.securitytracker.com/id/1036370
Oracle Fusion Middleware Bugs Let Remote Users Access and Modify Data, Deny Service, and Gain Elevated Privileges - SecurityTracker
-
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
Oracle Critical Patch Update - July 2016Patch;Vendor Advisory
-
http://www-01.ibm.com/support/docview.wss?uid=swg21988718
IBM Security Bulletin: Multiple Vulnerabilities in Oracle Outside In Technology affect IBM Rational DOORS Next Generation (CVE-2016-3574, CVE-2016-3575, etc)
Jump to