CVE-2016-3432
First published: Thu Jul 21 2016(Updated: )
Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0 and 11.1.1.9.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to Web Server.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Business Intelligence Publisher | =11.1.1.7.0 | |
| Oracle Business Intelligence Publisher | =11.1.1.9.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-3432?
CVE-2016-3432 has been categorized with a severity rating that indicates it poses potential risks to confidentiality and integrity.
How do I fix CVE-2016-3432?
To remediate CVE-2016-3432, users should upgrade to the latest patched version of Oracle Business Intelligence Publisher.
Who is affected by CVE-2016-3432?
CVE-2016-3432 affects users of Oracle Business Intelligence Publisher versions 11.1.1.7.0 and 11.1.1.9.0.
What type of attacks does CVE-2016-3432 enable?
CVE-2016-3432 specifically allows remote authenticated users to potentially compromise system confidentiality and integrity.
When was CVE-2016-3432 disclosed?
CVE-2016-3432 was disclosed as part of Oracle's Critical Patch Update in July 2016.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/remedy
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- agent/source
- vendor/oracle
- canonical/oracle business intelligence publisher
- version/oracle business intelligence publisher/11.1.1.7.0
- version/oracle business intelligence publisher/11.1.1.9.0