CVE-2009-2030

Опубликовано: 11 июн. 2009

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Unspecified vulnerability in the XML Digital Signature verification functionality in JVA-RUN in JDK 6.0 in IBM OS/400 i5/OS V5R4M0 and V6R1M0 has unknown impact and attack vectors related to "XML SECURITY PATCH."

Ссылки

http://secunia.com/advisories/35356
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2741c96b7c573b81a862575cc003c726e
Patch
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2e858199605d67111862575cc003c7276
Patch
Vendor Advisory
http://www.attrition.org/pipermail/vim/2009-June/002190.html
http://www.securityfocus.com/bid/35265
http://www.vupen.com/english/advisories/2009/1536
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/51005
http://secunia.com/advisories/35356
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2741c96b7c573b81a862575cc003c726e
Patch
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2e858199605d67111862575cc003c7276
Patch
Vendor Advisory
http://www.attrition.org/pipermail/vim/2009-June/002190.html
http://www.securityfocus.com/bid/35265
http://www.vupen.com/english/advisories/2009/1536
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/51005

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:sun:jdk:6:*:*:*:*:*:*:*

Одно из

cpe:2.3:o:ibm:os\/400:v5r4m0:*:*:*:*:*:*:*

cpe:2.3:o:ibm:os\/400:v6r1m0:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00751

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-9frm-mf75-f6q2

github

почти 4 года назад