CVE-2010-4432

Unspecified vulnerability in the Oracle Transportation Manager component in Oracle Supply Chain Products Suite 5.5.06, 6.0, 6.1, and 6.2 allows remote authenticated users to affect confidentiality via unknown vectors related to UI Infrastructure.

CVSS v2.0 3.5 LOW

3.5^/10

CVSS v2.0 : LOW

Vector : AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://osvdb.org/70566
http://secunia.com/advisories/42993
http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html	Vendor Advisory
http://www.securityfocus.com/bid/45875
http://www.vupen.com/english/advisories/2011/0146
https://exchange.xforce.ibmcloud.com/vulnerabilities/64784

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:supply_chain_products_suite:5.5.06:::::::*
	cpe:2.3:a:oracle:supply_chain_products_suite:6.0:::::::*
	cpe:2.3:a:oracle:supply_chain_products_suite:6.1:::::::*
	cpe:2.3:a:oracle:supply_chain_products_suite:6.2:::::::*

History

No history.

Information

Published : 2011-01-19 17:00

Updated : 2024-02-04 17:54

NVD link : CVE-2010-4432

Mitre link : CVE-2010-4432

CVE.ORG link : CVE-2010-4432

JSON object : View

Products Affected

oracle

supply_chain_products_suite

CWE

NVD-CWE-noinfo

{"id": "CVE-2010-4432", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:N/A:N", "authentication": "SINGLE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-01-19T17:00:01.670", "references": [{"url": "http://osvdb.org/70566", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/42993", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/45875", "source": "secalert_us@oracle.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0146", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64784", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle Transportation Manager component in Oracle Supply Chain Products Suite 5.5.06, 6.0, 6.1, and 6.2 allows remote authenticated users to affect confidentiality via unknown vectors related to UI Infrastructure."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Oracle Transportation Manager para Oracle Supply Chain Products Suite v5.5.06, v6.0, v6.1, y v6.2 permite a usuarios autenticados remotamente afectar a la confidencialidad a trav\u00e9s de vectores desconocidos relacionados con UI Infrastructure."}], "lastModified": "2017-08-17T01:33:11.523", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:5.5.06:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08F9B9ED-6686-412F-B050-F946AEEEE75D"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F51A12E9-15E0-49B2-9F25-32C58D7364CB"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EC31414-9839-4902-BEC2-CE07728E6D18"}, {"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78940F7B-4092-43F9-A9C9-BBFA89B16F8D"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}