CVE-2010-2390

2010-10-1400:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2010-2390

database control

em console

oracle

fusion middleware

vulnerability

confidentiality

integrity

availability

nvd

6.1 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.5%

JSON

Unspecified vulnerability in the Database Control component in EM Console in Oracle Database Server 10.1.0.5 and 10.2.0.3, Oracle Fusion Middleware 10.1.2.3 and 10.1.4.3, and Enterprise Manager Grid Control allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

CPENameOperatorVersion
oracle:database_serveroracle database servereq10.2.0.3
oracle:database_serveroracle database servereq10.1.0.5
oracle:fusion_middlewareoracle fusion middlewareeq10.1.4.3
oracle:fusion_middlewareoracle fusion middlewareeq10.1.2.3
oracle:enterprise_manager_grid_controloracle enterprise manager grid controleq*

CPE	Name	Operator	Version
oracle:database_server	oracle database server	eq	10.2.0.3
oracle:database_server	oracle database server	eq	10.1.0.5
oracle:fusion_middleware	oracle fusion middleware	eq	10.1.4.3
oracle:fusion_middleware	oracle fusion middleware	eq	10.1.2.3
oracle:enterprise_manager_grid_control	oracle enterprise manager grid control	eq	*