CVE-2016-0425

Published: Jan 21, 2016Modified: May 6, 2026

6.0

Vector

AV:N/AC:M/Au:S/C:P/I:P/A:P

Exploitability: 6.8 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Products 9.1 and 9.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Monitoring and Diagnostics.

Affected (2)

Products: Oracle: Jd Edwards Products

1 product

Jd Edwards Products

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Jd Edwards Products	Version 9.1
Oracle Jd Edwards Products	Version 9.2

References (8)

http://packetstormsecurity.com/files/138511/JD-Edwards-9.1-EnterpriseOne-Server-Password-Disclosure.html

Source: secalert_us@oracle.com

http://seclists.org/fulldisclosure/2016/Aug/129

Source: secalert_us@oracle.com

http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

Source: secalert_us@oracle.com

Vendor Advisory

http://www.securitytracker.com/id/1034722

Source: secalert_us@oracle.com

http://packetstormsecurity.com/files/138511/JD-Edwards-9.1-EnterpriseOne-Server-Password-Disclosure.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://seclists.org/fulldisclosure/2016/Aug/129

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1034722

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.