CVE-2010-4474JDK vulnerability

4 documents4 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 82.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN JDKSUN JRE
Timeline
PublishedFeb 17
Latest updateMay 17

Description

Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect confidentiality via unknown vectors related to Security, a similar vulnerability to CVE-2009-4269.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

NVDsun/jdk1.6.0+1
NVDsun/jre1.6.0+1

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-qrv7-cr6p-439g: Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect2022-05-17
CVEList
CVE-2010-4474: Unspecified vulnerability in the Java DB component in Oracle Java SE and Java for Business 6 Update 23, and, and earlier allows local users to affect2011-02-17

💥Exploits & PoCs

1
Exploit-DB
IBM Lotus Domino Web Access Upload Module - Remote Buffer Overflow (Metasploit)2010-09-20
CVE-2010-4474 — SUN JDK vulnerability | cvebase