CVE-2008-2614 — Oracle Application Server vulnerability

3 documents3 sources

Severity

4.3MEDIUMNVD

EPSS

0.5%

top 35.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Application Server Oracle Application Server

Timeline

PublishedJul 15

Latest updateMay 1

Description

Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.3.3 has unknown impact and remote attack vectors.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

▶NVDoracle/application_server10.1.3.3, 9.0.4.3+1

▶NVDoracle/oracle_application_server10.1.2.3

🔴Vulnerability Details

GHSA

GHSA-w34c-rmp4-8hrh: Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 9↗2022-05-01

▶

CVEList

CVE-2008-2614: Unspecified vulnerability in the Oracle HTTP Server component in Oracle Application Server 9↗2008-07-15

▶