返回 CVE 浏览器

CVE-2010-4449

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1460%

EPSS Percentile35.29th

Published2011年1月19日

Last Modified2026年4月29日

Vulnerability Description

Unspecified vulnerability in the Audit Vault component in Oracle Audit Vault 10.2.3.2 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2011 CPU. Oracle has not commented on claims from a reliable third party coordinator that this issue is related to a crafted parameter in an action.execute request to the av component on TCP port 5700.

Affected Platforms (CPE)

📦

Oracle

Audit Vault

= 10.2.3.2

References & Advisories

🔗 http://osvdb.org/70583

🔗 http://secunia.com/advisories/42919

🔗 http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html

🔗 http://www.securityfocus.com/bid/45844

🔗 http://www.securitytracker.com/id?1024973

🔗 http://www.vupen.com/english/advisories/2011/0141

🔗 http://www.zerodayinitiative.com/advisories/ZDI-11-017/

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/64762

相关漏洞威胁

CVE-2010-027410.0

Unspecified vulnerability in the Edit Contact scene in Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before ...

CVE-2010-027510.0

Ultra-light Mode in IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle s...

CVE-2010-044410.0

HP Operations Agent 8.51, 8.52, 8.53, and 8.60 on Solaris 10 uses a blank password for the opc_op account, which allows remote att...

CVE-2010-027610.0

IBM Lotus iNotes (aka Domino Web Access or DWA) before 229.241 for Domino 8.0.2 FP3 does not properly handle navigation of the "Tr...