CVE-2010-3544

EPSS 1.38%
Published 14.10.2010 18:00:17
Last modified 11.04.2025 00:51:21
Source secalert_us@oracle.com
Teams watchlist Login
Open Login

Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 7.0 allows remote attackers to affect integrity and availability via unknown vectors related to Administration.  NOTE: the previous information was obtained from the October 2010 CPU.  Oracle has not commented on claims from a reliable source that this is cross-site request forgery (CSRF) that allows remote attackers to stop an instance via the management console.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Oracle ≫ Sun Products Suite Version7.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.38%	0.785

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:N/I:P/A:P

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

Vendor Advisory

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

US Government Resource

http://jvn.jp/en/jp/JVN50133036/index.html

http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000042.html

https://nvd.nist.gov/vuln/detail/CVE-2010-3544

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-3544

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-3544

EUVD