Lucene search

[email protected]CVE-2010-3505

HistoryJan 19, 2011 - 4:00 p.m.

CVE-2010-3505

2011-01-1916:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2010-3505

oracle

supply chain products

confidentiality

vulnerability

5.4 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.3%

JSON

Unspecified vulnerability in the Agile Core component in Oracle Supply Chain Products Suite 9.3.0.2 and 9.3.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Folders, Files & Attachments, a different vulnerability than CVE-2010-4429.

CPENameOperatorVersion
oracle:supply_chain_products_suiteoracle supply chain products suiteeq9.3.1
oracle:supply_chain_products_suiteoracle supply chain products suiteeq9.3.0.2

CPE	Name	Operator	Version
oracle:supply_chain_products_suite	oracle supply chain products suite	eq	9.3.1
oracle:supply_chain_products_suite	oracle supply chain products suite	eq	9.3.0.2

References

secunia.com/advisories/42923

www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

www.securityfocus.com/bid/45872

www.vupen.com/english/advisories/2011/0145

exchange.xforce.ibmcloud.com/vulnerabilities/64782

5.4 Medium

AI Score

Confidence

Low

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

69.3%

JSON

Related for CVE-2010-3505

prion2 cve1 securityvulns1 oracle1