CVE-2006-0291 — Oracle Application Server vulnerability

3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

2.0%

top 16.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Application Server Oracle Collaboration Suite Oracle Database Server +1 more

Timeline

PublishedJan 18

Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Oracle Database Server 10.2.0.1, Application Server 9.0.4.2 and 10.1.2.1, Collaboration Suite Release 2, version 9.0.4.2 (Oracle9i), and E-Business Suite and Applications 11.5.10 have unspecified impact and attack vectors, as identified by Oracle Vuln# (1) WF02 and (2) WF03 in the Oracle Workflow Cartridge component.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages4 packages

▶NVDoracle/application_server10.1.2.1.0, 9.0.4.2+1

▶NVDoracle/database_server10.2.0.1

▶NVDoracle/e-business_suite11.5.10

▶NVDoracle/collaboration_suite9.0.4.2

🔴Vulnerability Details

GHSA

GHSA-x622-cw45-v8x6: Multiple unspecified vulnerabilities in Oracle Database Server 10↗2022-05-01

▶

CVEList

CVE-2006-0291: Multiple unspecified vulnerabilities in Oracle Database Server 10↗2006-01-18

▶