Medium severity5.4NVD Advisory· Published Jul 21, 2016· Updated Jun 17, 2026

CVE-2016-3524

Description

Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.1.3, 12.2.3, 12.2.4, and 12.2.5 allows remote attackers to affect confidentiality and integrity via vectors related to Configuration.

Affected products

Oracle Corporation/E Business Suite4 versions
cpe:2.3:a:oracle:e-business_suite:12.1.3:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:oracle:e-business_suite:12.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.2.5:*:*:*:*:*:*:*
Oracle Corporation/Oracle E-Business Suitellm-fuzzy
Range: 12.1.3, 12.2.3, 12.2.4, 12.2.5

Patches

Vulnerability mechanics

References

www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.htmlnvdPatchVendor Advisory
www.securityfocus.com/bid/91787nvdThird Party AdvisoryVendor Advisory
www.securityfocus.com/bid/91870nvd
www.securitytracker.com/id/1036403nvd

News mentions

No linked articles in our index yet.

cvss	0.351
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000