CVE-2016-5514
First published: Tue Oct 25 2016(Updated: )
Unspecified vulnerability in the Oracle Agile PLM component in Oracle Supply Chain Products Suite 9.3.4 and 9.3.5 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to ExportServlet.
Credit: secalert_us@oracle.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Oracle Agile Product Lifecycle Management | =9.3.4 | |
| Oracle Agile Product Lifecycle Management | =9.3.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-5514?
CVE-2016-5514 is rated as having a moderate severity due to its potential impact on confidentiality, integrity, and availability.
How do I fix CVE-2016-5514?
To resolve CVE-2016-5514, it is recommended to apply the latest patches provided by Oracle for the affected versions of Agile PLM.
Who is affected by CVE-2016-5514?
CVE-2016-5514 affects remote authenticated users of Oracle Agile PLM versions 9.3.4 and 9.3.5.
What vector is exploited in CVE-2016-5514?
CVE-2016-5514 involves exploitation vectors related to the ExportServlet component of Oracle Agile PLM.
Can CVE-2016-5514 be exploited remotely?
Yes, CVE-2016-5514 can be exploited remotely by authenticated users.
- agent/references
- agent/type
- agent/remedy
- agent/author
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/oracle
- canonical/oracle agile product lifecycle management
- version/oracle agile product lifecycle management/9.3.4
- version/oracle agile product lifecycle management/9.3.5