CVE-2009-3852

Опубликовано: 03 нояб. 2009

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Unspecified vulnerability in the XML component in IBM Runtimes for Java Technology 5.0.0 before SR10 has unknown impact and attack vectors, related to the "updated version of XML4J 4.4.17."

Ссылки

http://secunia.com/advisories/37210
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ63920
http://www.securityfocus.com/bid/36894
http://www.vupen.com/english/advisories/2009/3106
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/54069
http://secunia.com/advisories/37210
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg1IZ63920
http://www.securityfocus.com/bid/36894
http://www.vupen.com/english/advisories/2009/3106
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/54069

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:runtimes_for_java_technology:*:*:*:*:*:*:*:*

Версия до 5.0.0 (включая)

EPSS

Процентиль: 61%

0.00415

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-33qq-vjrc-8xw3

github

почти 4 года назад