Description

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer Faces.

Remediation

References

CVE-2016-3505

Related Vulnerabilities

Oracle JRE CVE-2013-2429 Vulnerability (CVE-2013-2429)

WordPress Plugin Sender by BestWebSoft Cross-Site Scripting (1.2.0)

SugarCRM Gain Sensitive Information Vulnerability (CVE-2004-1226)

WordPress Plugin Fetch Tweets Cross-Site Scripting (2.6.4)

MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-9240)

Severity

High

Classification

CVE-2016-3505 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities