2.1

CVE-2008-4747

Unspecified vulnerability in the search feature in Sun Java System LDAP JDK before 4.20 allows context-dependent attackers to obtain sensitive information via unknown attack vectors related to the LDAP JDK library.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SunJava Access Manager Version6 Update2005q1
   SunJava System Ldap Jdk Updateunknown Editionlinux Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionsparc Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionx86 Version <= 4.19
SunJava Access Manager Version7 Update2005q4
   SunJava System Ldap Jdk Updateunknown Editionlinux Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionsparc Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionx86 Version <= 4.19
SunJava Access Manager Version7.1
   SunJava System Ldap Jdk Updateunknown Editionlinux Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionsparc Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionx86 Version <= 4.19
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.07% 0.174
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.