CVE-2009-1008Oracle Application Server vulnerability

3 documents3 sources
Severity
4.4MEDIUMNVD
EPSS
0.1%
top 73.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Websphere PortalOracle Application Server
Timeline
PublishedApr 15
Latest updateMay 2

Description

Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 8.2.2 and 8.3.0 allows local users to affect confidentiality, integrity, and availability, related to HTML, a different vulnerability than CVE-2009-1010.

CVSS vector

AV:L/AC:M/C:P/I:P/A:PExploitability: 3.4 | Impact: 6.4

Affected Packages2 packages

NVDoracle/application_server8.2.2, 8.3.0+1
NVDibm/websphere_portal6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-2j6r-x87g-9p2g: Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 82022-05-02
CVEList
CVE-2009-1008: Unspecified vulnerability in the Outside In Technology component in Oracle Application Server 82009-04-15
CVE-2009-1008 — Oracle Application Server vulnerability | cvebase