CVE-2009-1998

3 documents3 sources

Severity

4.9MEDIUM

EPSS

0.5%

top 33.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Industry Applications

Timeline

PublishedOct 22

Latest updateMay 2

Description

Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2.8.0, 6.2.0, 6.3.0, and 6.3.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 6.8 | Impact: 4.9

Affected Packages1 packages

▶NVDoracle/industry_applications4 versions+3

🔴Vulnerability Details

GHSA

GHSA-mg86-2vf3-5mjq: Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2↗2022-05-02

▶

CVEList

CVE-2009-1998: Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2↗2009-10-22

▶