CVE-2007-5520Oracle Application Server vulnerability

3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.9%
top 24.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Application ServerOracle Database Server
Timeline
PublishedOct 17
Latest updateMay 1

Description

Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8 and 9.2.0.8DV, and Oracle Application Server 9.0.4.3, 10.1.3.0.0 up to 10.1.3.3.0, and 10.1.2.0.1 up to 10.1.2.2.0, has unknown impact and remote attack vectors, aka AS05.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDoracle/database_server9.2.0.8, 9.2.0.8dv+1
NVDoracle/application_server7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-8gpx-h5gv-p8m4: Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 92022-05-01
CVEList
CVE-2007-5520: Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 92007-10-17
CVE-2007-5520 — Oracle Application Server vulnerability | cvebase