CVE-2009-3412

3 documents3 sources

Severity

1.0LOW

EPSS

0.2%

top 52.66%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Application Server Oracle Database Server

Timeline

PublishedJan 13

Latest updateMay 2

Description

Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5; and Oracle Application Server 10.1.2.3; allows local users to affect confidentiality via unknown vectors.

CVSS vector

AV:L/AC:H/C:P/I:N/A:NExploitability: 1.5 | Impact: 2.9

Affected Packages2 packages

▶NVDoracle/database_server10.1.0.5, 9.2.0.8, 9.2.0.8dv+2

▶NVDoracle/application_server10.1.2.3

🔴Vulnerability Details

GHSA

GHSA-m587-5g57-rrrf: Unspecified vulnerability in the Unzip component in Oracle Database 9↗2022-05-02

▶

CVEList

CVE-2009-3412: Unspecified vulnerability in the Unzip component in Oracle Database 9↗2010-01-13

▶