6.8
CVE-2008-4010
- EPSS 1.43%
- Veröffentlicht 14.10.2008 21:11:11
- Zuletzt bearbeitet 16.06.2026 22:56:59
- Quelle secalert_us@oracle.com
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the WebLogic Workshop component in BEA Product Suite 10.3, 10.2, 10.0 MP1, 9.2 MP3, and 8.1 SP6 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to "some NetUI tags."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Oracle ≫ Bea Product Suite Version8.1 Updatesp6
Oracle ≫ Bea Product Suite Version9.2 Updatemp3
Oracle ≫ Bea Product Suite Version10.0 Updatemp1
Oracle ≫ Bea Product Suite Version10.2
Oracle ≫ Bea Product Suite Version10.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.43% | 0.696 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
http://www.oracle.com/technetwork/topics/security/cpuoct2008-100299.html
http://www.vupen.com/english/advisories/2008/2825
http://www.securitytracker.com/id?1021056
http://secunia.com/advisories/32302
https://exchange.xforce.ibmcloud.com/vulnerabilities/45909
https://support.bea.com/application_content/product_portlets/securityadvisories/2803.html