CVE-2009-2030 — IBM OS 400 vulnerability

3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

0.8%

top 26.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM OS 400 SUN JDK

Timeline

PublishedJun 11

Latest updateMay 2

Description

Unspecified vulnerability in the XML Digital Signature verification functionality in JVA-RUN in JDK 6.0 in IBM OS/400 i5/OS V5R4M0 and V6R1M0 has unknown impact and attack vectors related to "XML SECURITY PATCH."

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDsun/jdk6

▶NVDibm/os_400v5r4m0, v6r1m0+1

Patches

Patch: www-01.ibm.com ↗Patch: www-01.ibm.com ↗Patch: www.vupen.com ↗

🔴Vulnerability Details

GHSA

GHSA-9frm-mf75-f6q2: Unspecified vulnerability in the XML Digital Signature verification functionality in JVA-RUN in JDK 6↗2022-05-02

▶

CVEList

CVE-2009-2030: Unspecified vulnerability in the XML Digital Signature verification functionality in JVA-RUN in JDK 6↗2009-06-11

▶