| Vulnerability Name: | CVE-2010-3589 (CCN-64781) | ||||||||
| Assigned: | 2010-09-20 | ||||||||
| Published: | 2011-01-19 | ||||||||
| Updated: | 2017-08-17 | ||||||||
| Summary: | Unspecified vulnerability in the Oracle Application Object Library component in Oracle Applications 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Logout. | ||||||||
| CVSS v3 Severity: | 4.8 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N)
| ||||||||
| CVSS v2 Severity: | 4.0 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N) 3.0 Low (Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)
3.0 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)
| ||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: MITRE Type: CNA CVE-2010-3589 Source: CCN Type: SA42922 Oracle E-Business Suite Two Vulnerabilities Source: SECUNIA Type: Vendor Advisory 42922 Source: CCN Type: Oracle Critical Patch Update Advisory - January 2011 Oracle Critical Patch Update Advisory - January 2011 Source: CONFIRM Type: Vendor Advisory http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html Source: CCN Type: OSVDB ID: 70535 Oracle Applications Application Object Library Logout Unspecified Remote Issue Source: BID Type: UNKNOWN 45861 Source: CCN Type: BID-45861 Oracle Application Object Library CVE-2010-3589 Remote Security Vulnerability Source: VUPEN Type: Vendor Advisory ADV-2011-0144 Source: XF Type: UNKNOWN oracle-ebusiness-library-unauth-access(64781) Source: XF Type: UNKNOWN oracle-ebusiness-library-unauth-access(64781) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||