4.9
CVE-2009-1998
- EPSS 1.62%
- Veröffentlicht 22.10.2009 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:08:31
- Quelle secalert_us@oracle.com
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2.8.0, 6.2.0, 6.3.0, and 6.3.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Oracle ≫ Industry Applications Version2.8.0
Oracle ≫ Industry Applications Version6.2.0
Oracle ≫ Industry Applications Version6.3.0
Oracle ≫ Industry Applications Version6.3.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.62% | 0.729 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.9 | 6.8 | 4.9 |
AV:N/AC:M/Au:S/C:P/I:P/A:N
|
http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html
http://www.us-cert.gov/cas/techalerts/TA09-294A.html
http://osvdb.org/59114
http://www.securityfocus.com/bid/36775
http://www.securitytracker.com/id?1023060