Lucene search
HistoryApr 20, 2011 - 10:55 a.m.
CVE-2011-0836
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
AI Score
5.7
Confidence
Low
EPSS
0.001
Percentile
37.2%
Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.
Affected configurations
Node
oracleenterpriseone_toolsMatch8.9
ORoraclejd_edwards_enterpriseoneMatch8.9budle14
ORoraclejd_edwards_enterpriseoneMatch8.9bundle14
ORoraclejd_edwards_enterpriseoneMatch8.9bundle21
ORoraclejd_edwards_enterpriseoneMatch8.9bundle9
ORoraclejd_edwards_enterpriseoneMatch8.9.18
ORoraclejd_edwards_enterpriseoneMatch8.98.1.4
ORoraclejd_edwards_enterpriseoneMatch8.98.2.1
ORoraclejd_edwards_enterpriseone_epMatch8.9
ORoracleoneworld_toolsRange≤24.1.3
ORoraclepeoplesoft_and_jdedwards_product_suiteMatch8.9
ORoraclepeoplesoft_and_jdedwards_product_suiteMatch8.9bundle23
ORoraclepeoplesoft_and_jdedwards_product_suiteMatch8.9bundle37
ORoraclepeoplesoft_and_jdedwards_product_suiteMatch8.9bundle38
ORoraclepeoplesoft_and_jdedwards_product_suiteMatch8.9bundle41
ORoraclepeoplesoft_and_jdedwards_product_suiteMatch8.9gp_2010-e
ORoraclepeoplesoft_and_jdedwards_product_suiteMatch8.98.4.1
ORoraclepeoplesoft_and_jdedwards_suite_scmMatch8.9bundle37
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | enterpriseone_tools | 8.9 | cpe:2.3:a:oracle:enterpriseone_tools:8.9:*:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone | 8.9 | cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.9:budle14:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone | 8.9 | cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.9:bundle14:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone | 8.9 | cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.9:bundle21:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone | 8.9 | cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.9:bundle9:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone | 8.9.18 | cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.9.18:*:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone | 8.98.1.4 | cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.98.1.4:*:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone | 8.98.2.1 | cpe:2.3:a:oracle:jd_edwards_enterpriseone:8.98.2.1:*:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone_ep | 8.9 | cpe:2.3:a:oracle:jd_edwards_enterpriseone_ep:8.9:*:*:*:*:*:*:* |
| oracle | oneworld_tools | * | cpe:2.3:a:oracle:oneworld_tools:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2011-0836
2011-04-20 10:00:00
prion
prion
Design/Logic Flaw
2011-04-20 10:55:00
exploitdb
exploitdb
Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - '/jde/E1Menu_Menu.mafService?e1.namespace' Cross-Site Scripting
2011-04-19 00:00:00
cve
cve
CVE-2011-0836
2011-04-20 10:55:01
packetstorm
packetstorm
Oracle JD Edwards EnterpriseOne Cross Site Scripting
2011-04-21 00:00:00
securityvulns
securityvulns
oracle
oracle
cpuapr2011
2011-04-19 00:00:00
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
AI Score
5.7
Confidence
Low
EPSS
0.001
Percentile
37.2%
Related for NVD:CVE-2011-0836