CVE-2009-1967

critical

Description

Unspecified vulnerability in the Config Management component in (1) Oracle Database 11.1.0.7 and (2) Oracle Enterprise Manager 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-1966.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/51753

http://www.vupen.com/english/advisories/2009/1900

http://www.securitytracker.com/id?1022560

http://www.securityfocus.com/bid/35692

http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html

http://secunia.com/advisories/35776

http://osvdb.org/55888

Details

Source: Mitre, NVD

Published: 2009-07-14

Updated: 2017-08-17

Risk Information

CVSS v2

Base Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.6

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Severity: Critical