Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-2370Oracle Fusion Middleware vulnerability

6 documents4 sources
Severity
4.3MEDIUMNVD
EPSS
16.2%
top 5.18%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Oracle Fusion Middleware
Timeline
PublishedJul 13
Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Business Process Management component in Oracle Fusion Middleware 5.7 MP3, 6.0 MP5, and 10.3 MP2 allows remote attackers to affect integrity, related to BPM.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDoracle/fusion_middleware10.3, 5.7, 6.0+2

🔴Vulnerability Details

2
GHSA
GHSA-w3mm-vf68-5m3r: Unspecified vulnerability in the Oracle Business Process Management component in Oracle Fusion Middleware 52022-05-17
CVEList
CVE-2010-2370: Unspecified vulnerability in the Oracle Business Process Management component in Oracle Fusion Middleware 52010-07-13

💥Exploits & PoCs

3
Exploit-DB
Microsoft RRAS Service - RASMAN Registry Overflow (MS06-025) (Metasploit)2010-08-25
Exploit-DB
Oracle Business Process Management 10.3.2 - Cross-Site Scripting2010-07-13
Exploit-DB
Microsoft RRAS Service - Remote Overflow (MS06-025) (Metasploit)2010-05-09
CVE-2010-2370 — Oracle Fusion Middleware vulnerability | cvebase