CVE-2010-3544

EPSS 1.38%
Veröffentlicht 14.10.2010 18:00:17
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert_us@oracle.com
CVE-Watchlists
Login
Unerledigt
Login

Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 7.0 allows remote attackers to affect integrity and availability via unknown vectors related to Administration.  NOTE: the previous information was obtained from the October 2010 CPU.  Oracle has not commented on claims from a reliable source that this is cross-site request forgery (CSRF) that allows remote attackers to stop an instance via the management console.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Oracle ≫ Sun Products Suite Version7.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.38%	0.785

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:N/I:P/A:P

http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html

Vendor Advisory

http://www.us-cert.gov/cas/techalerts/TA10-287A.html

US Government Resource

http://jvn.jp/en/jp/JVN50133036/index.html

http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-000042.html

https://nvd.nist.gov/vuln/detail/CVE-2010-3544

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-3544

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-3544

EUVD