CVE-2008-0347

3 documents3 sources

Severity

10.0CRITICAL

EPSS

2.5%

top 14.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Application Server Oracle Application Server 9I Oracle Collaboration Suite +3 more

Timeline

PublishedJan 17

Latest updateMay 1

Description

Unspecified vulnerability in the Oracle Ultra Search component in Oracle Collaboration Suite 10.1.2; Database 9.2.0.8, 10.1.0.5, and 10.2.0.3; and Application Server 9.0.4.3 and 10.1.2.0.2; has unknown impact and local attack vectors, aka OCS01. NOTE: Oracle has not disputed a reliable claim that this issue is related to WKSYS schema privileges.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages6 packages

▶NVDoracle/database_server7 versions+6

▶NVDoracle/application_server8 versions+7

▶NVDoracle/collaboration_suite10.1.2

▶NVDoracle/application10.1.2.0.2, 9.0.4.3+1

▶NVDoracle/e-business_suite7 versions+6

🔴Vulnerability Details

GHSA

GHSA-rcxv-59x6-86jh: Unspecified vulnerability in the Oracle Ultra Search component in Oracle Collaboration Suite 10↗2022-05-01

▶

CVEList

CVE-2008-0347: Unspecified vulnerability in the Oracle Ultra Search component in Oracle Collaboration Suite 10↗2008-01-17

▶