CVE-2007-0284 — Oracle Application Server vulnerability

3 documents3 sources

Severity

6.4MEDIUMNVD

EPSS

0.6%

top 29.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Application Server Oracle Collaboration Suite

Timeline

PublishedJan 17

Latest updateMay 1

Description

Multiple unspecified vulnerabilities in Oracle Application Server 9.0.4.3 and 10.1.2.0.0, and Collaboration Suite 9.0.4.2, have unknown impact and attack vectors related to Oracle Containers for J2EE, aka (1) OC4J03 and (2) OC4J04.

CVSS vector

AV:N/AC:L/C:P/I:P/A:NExploitability: 10.0 | Impact: 4.9

Affected Packages2 packages

▶NVDoracle/application_server10.1.2.0.0, 9.0.4.3+1

▶NVDoracle/collaboration_suite9.0.4.2

Patches

Patch: secunia.com ↗Patch: www.us-cert.gov ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-9775-74j2-3355: Multiple unspecified vulnerabilities in Oracle Application Server 9↗2022-05-01

▶

CVEList

CVE-2007-0284: Multiple unspecified vulnerabilities in Oracle Application Server 9↗2007-01-17

▶