CVE-2016-3505 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2016-3505

CWE

https://cwe.mitre.org/data/definitions/.html

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, and 12.2.1.0 allows remote authenticated users to affect confidentiality, integrity, and availability via vectors related to JavaServer Faces.

Affected Software

Name	Vendor	Start Version	End Version
Weblogic_server	Oracle	10.3.6.0.0 (including)	10.3.6.0.0 (including)
Weblogic_server	Oracle	12.1.3.0.0 (including)	12.1.3.0.0 (including)
Weblogic_server	Oracle	12.2.1.0.0 (including)	12.2.1.0.0 (including)

References

http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
http://www.securityfocus.com/bid/93708
http://www.securitytracker.com/id/1037052