CVE-2009-1017

Опубликовано: 15 апр. 2009

Источник: nvd

CVSS2: 4

EPSS Низкий

Описание

Unspecified vulnerability in the BI Publisher component in Oracle Application Server 5.6.2, 10.1.3.2.1, 10.1.3.3.3, and 10.1.3.4 allows remote authenticated users to affect confidentiality via unknown vectors, a different vulnerability than CVE-2009-0994.

Ссылки

http://osvdb.org/53746
Broken Link
http://secunia.com/advisories/34693
Permissions Required
http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
Broken Link
Vendor Advisory
http://www.securityfocus.com/bid/34461
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1022055
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA09-105A.html
Third Party Advisory
US Government Resource
http://osvdb.org/53746
Broken Link
http://secunia.com/advisories/34693
Permissions Required
http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
Broken Link
Vendor Advisory
http://www.securityfocus.com/bid/34461
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1022055
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA09-105A.html
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:oracle:application_server:5.6.2:*:*:*:*:*:*:*

cpe:2.3:a:oracle:application_server:10.1.3.2.1:*:*:*:*:*:*:*

cpe:2.3:a:oracle:application_server:10.1.3.3.3:*:*:*:*:*:*:*

cpe:2.3:a:oracle:application_server:10.1.3.4:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03352

Низкий

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-m9rv-9vx3-wj7v

github

почти 4 года назад