Unspecified vulnerability in the Data Pump Import component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows local users to affect confidentiality, integrity, and availability via unknown vectors.

Metrics

No CVSS v4.0

No CVSS v3.1

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact total

Affected Vendors & Products

Vendors Products
Oracle
  • Database

Configuration 1 [-]

OR cpe:2.3:a:oracle:database:11.2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database:12.1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:oracle:database:12.1.0.2:*:*:*:*:*:*:*

No data.

References
Link Providers
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html cve-icon cve-icon
http://www.securityfocus.com/bid/91787 cve-icon cve-icon
http://www.securityfocus.com/bid/91874 cve-icon cve-icon
http://www.securitytracker.com/id/1036363 cve-icon cve-icon
History

Sat, 12 Oct 2024 08:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}
cve-icon MITRE

Status: PUBLISHED

Assigner: oracle

Published:

Updated: 2024-10-11T20:54:04.735Z

Reserved: 2016-03-17T00:00:00

Link: CVE-2016-3489

cve-icon Vulnrichment

Updated: 2024-08-05T23:56:14.395Z

cve-icon NVD

Status : Modified

Published: 2016-07-21T10:12:43.617

Modified: 2024-11-21T02:50:07.060

Link: CVE-2016-3489

cve-icon Redhat

No data.