CVE-2009-0990

Опубликовано: 15 апр. 2009

Источник: nvd

CVSS2: 5.5

EPSS Низкий

Описание

Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, and 10.1.3.3.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-0989.

Ссылки

http://osvdb.org/53743
Broken Link
http://secunia.com/advisories/34693
Permissions Required
http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
Broken Link
Vendor Advisory
http://www.securityfocus.com/bid/34461
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1022055
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA09-105A.html
Third Party Advisory
US Government Resource
http://osvdb.org/53743
Broken Link
http://secunia.com/advisories/34693
Permissions Required
http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
Broken Link
Vendor Advisory
http://www.securityfocus.com/bid/34461
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1022055
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA09-105A.html
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:application_server:5.6.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:application_server:10.1.3.2.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:application_server:10.1.3.3.3:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02589

Низкий

5.5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-j2w3-cjc2-gwqr

github

почти 4 года назад