Oracle JDeveloper ADF Faces Unspecified Remote Information Disclosure (January 2017 CPU)
Medium Nessus Plugin ID 96657
SynopsisA software development application installed on the remote host is affected by an information disclosure vulnerability.
DescriptionThe version of Oracle JDeveloper installed on the remote host is missing a security patch. It is, therefore, affected by an information disclosure vulnerability in the Application Development Framework (ADF) Faces subcomponent that allows an unauthenticated, remote attacker to disclose arbitrary data.
SolutionApply the appropriate patch according to the January 2017 Oracle Critical Patch Update advisory.