Vulnerability Details : CVE-2010-0311
Unspecified vulnerability in Sun Java System Identity Manager (aka IdM) 8.1.0.5 and 8.1.0.6, when Sun Java System Access Manager, OpenSSO Enterprise 8.0, or IBM Tivoli Access Manager is used, allows remote attackers to obtain administrative access via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2010-0311
Probability of exploitation activity in the next 30 days: 1.89%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 87 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-0311
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
References for CVE-2010-0311
-
http://securitytracker.com/id?1023447
Sun Java System Identity Manager Flaw Grants Remote Users Administrative Access - SecurityTracker
-
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275010-1
Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/55572
Sun Java System Identity Manager (IdM) unspecified security bypass CVE-2010-0311 Vulnerability Report
-
http://www.vupen.com/english/advisories/2010/0108
Webmail | OVH- OVHVendor Advisory
Products affected by CVE-2010-0311
- cpe:2.3:a:sun:java_system_identity_server:8.1.0.5:*:*:*:*:*:*:*When used together with: IBM » Tivoli Access Manager For E-businessWhen used together with: SUN » Java System Access Manager
- cpe:2.3:a:sun:java_system_identity_server:8.1.0.6:*:*:*:*:*:*:*When used together with: IBM » Tivoli Access Manager For E-businessWhen used together with: SUN » Java System Access Manager