CVE-2009-1966

critical

Description

Unspecified vulnerability in the Config Management component in (1) Oracle Database 11.1.0.7 and (2) Oracle Enterprise Manager 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-1967.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/51752

http://www.vupen.com/english/advisories/2009/1900

http://www.securitytracker.com/id?1022560

http://www.securityfocus.com/bid/35676

http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html

http://secunia.com/advisories/35776

http://osvdb.org/55887

Details

Source: Mitre, NVD

Published: 2009-07-14

Updated: 2017-08-17

Risk Information

CVSS v2

Base Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.6

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Severity: Critical