Vulnerability in Oracle Retail_integration_bus
CVE-2016-3444
Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Retail Applications 13.0, 13.1, 13.2, 14.0, 14.1, and 15.0 allows remote attackers to affect confidentiality, integrity, and availability via vectors relate…
EPSS: 0.056 (90.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Oracle Retail_integration_bus — versions 13.0, 13.1, 13.2
- N/a — versions n/a
References
- secalert_us@oracle.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- 1036397 (vdb-entry, x_refsource_SECTRACK)
- 91787 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- 91883 (vdb-entry, x_refsource_BID)
Frequently asked questions
- What is CVE-2016-3444?
- CVE-2016-3444 is a critical-severity vulnerability in Oracle Retail_integration_bus. CVSS score: 9.8/10. Published 2016-07-21.
- How severe is CVE-2016-3444?
- Critical severity. CVSS v3 base score is 9.8 out of 10.