CVE-2010-2232

Опубликовано: 23 окт. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

In Apache Derby 10.1.2.1, 10.2.2.0, 10.3.1.4, and 10.4.1.3, Export processing may allow an attacker to overwrite an existing file.

Ссылки

http://db.apache.org/derby/releases/release-10.6.2.1.html#Note+for+DERBY-2925
Issue Tracking
Patch
Vendor Advisory
http://www.securityfocus.com/bid/101562
https://issues.apache.org/jira/browse/DERBY-2925
Patch
Release Notes
Vendor Advisory
http://db.apache.org/derby/releases/release-10.6.2.1.html#Note+for+DERBY-2925
Issue Tracking
Patch
Vendor Advisory
http://www.securityfocus.com/bid/101562
https://issues.apache.org/jira/browse/DERBY-2925
Patch
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:apache:derby:10.1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:apache:derby:10.2.2.0:*:*:*:*:*:*:*

cpe:2.3:a:apache:derby:10.3.1.4:*:*:*:*:*:*:*

cpe:2.3:a:apache:derby:10.4.1.3:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01673

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-284

Связанные уязвимости

CVE-2010-2232

CVSS3: 4.4

redhat

больше 8 лет назад

In Apache Derby 10.1.2.1, 10.2.2.0, 10.3.1.4, and 10.4.1.3, Export processing may allow an attacker to overwrite an existing file.

CVE-2010-2232

CVSS3: 7.5

debian

больше 8 лет назад

In Apache Derby 10.1.2.1, 10.2.2.0, 10.3.1.4, and 10.4.1.3, Export pro ...

GHSA-xprw-xvvm-vqmv

CVSS3: 7.5

github

больше 3 лет назад

Improper Access Control in Apache Derby

EPSS

Процентиль: 82%

0.01673

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-284