2.1

CVE-2008-4747

Unspecified vulnerability in the search feature in Sun Java System LDAP JDK before 4.20 allows context-dependent attackers to obtain sensitive information via unknown attack vectors related to the LDAP JDK library.

Data is provided by the National Vulnerability Database (NVD)
SunJava Access Manager Version6 Update2005q1
   SunJava System Ldap Jdk Updateunknown Editionlinux Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionsparc Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionx86 Version <= 4.19
SunJava Access Manager Version7 Update2005q4
   SunJava System Ldap Jdk Updateunknown Editionlinux Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionsparc Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionx86 Version <= 4.19
SunJava Access Manager Version7.1
   SunJava System Ldap Jdk Updateunknown Editionlinux Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionsparc Version <= 4.19
   SunJava System Ldap Jdk Updateunknown Editionx86 Version <= 4.19
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.07% 0.174
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.