Lucene search

OracleCVE-2011-2299

HistoryJul 21, 2011 - 12:55 a.m.

CVE-2011-2299

2011-07-2100:55:02

oracle

web.nvd.nist.gov

oracle

sparc

enterprise

m3000

m4000

m5000

m8000

m9000

xcp

vulnerability

nvd

cve-2011-2299

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.3

Confidence

Low

EPSS

0.005

Percentile

77.1%

JSON

Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to XSCF Control Package (XCP).

Affected configurations

Nvd

Node

oraclexcpRange≤1100

oraclesparc_enterprise_m3000_serverMatch-

oraclesparc_enterprise_m4000_serverMatch-

oraclesparc_enterprise_m5000_serverMatch-

oraclesparc_enterprise_m8000_serverMatch-

oraclesparc_enterprise_m9000_serverMatch-

VendorProductVersionCPE
oraclexcp*cpe:2.3:a:oracle:xcp:*:*:*:*:*:*:*:*
oraclesparc_enterprise_m3000_server-cpe:2.3:h:oracle:sparc_enterprise_m3000_server:-:*:*:*:*:*:*:*
oraclesparc_enterprise_m4000_server-cpe:2.3:h:oracle:sparc_enterprise_m4000_server:-:*:*:*:*:*:*:*
oraclesparc_enterprise_m5000_server-cpe:2.3:h:oracle:sparc_enterprise_m5000_server:-:*:*:*:*:*:*:*
oraclesparc_enterprise_m8000_server-cpe:2.3:h:oracle:sparc_enterprise_m8000_server:-:*:*:*:*:*:*:*
oraclesparc_enterprise_m9000_server-cpe:2.3:h:oracle:sparc_enterprise_m9000_server:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	xcp	*	cpe:2.3:a:oracle:xcp::::::::
oracle	sparc_enterprise_m3000_server	-	cpe:2.3:h:oracle:sparc_enterprise_m3000_server:-:::::::*
oracle	sparc_enterprise_m4000_server	-	cpe:2.3:h:oracle:sparc_enterprise_m4000_server:-:::::::*
oracle	sparc_enterprise_m5000_server	-	cpe:2.3:h:oracle:sparc_enterprise_m5000_server:-:::::::*
oracle	sparc_enterprise_m8000_server	-	cpe:2.3:h:oracle:sparc_enterprise_m8000_server:-:::::::*
oracle	sparc_enterprise_m9000_server	-	cpe:2.3:h:oracle:sparc_enterprise_m9000_server:-:::::::*

References

www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html

www.us-cert.gov/cas/techalerts/TA11-201A.html

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.3

Confidence

Low

EPSS

0.005

Percentile

77.1%

JSON

Related for CVE-2011-2299