Vulnerability Details : CVE-2010-3587
Unspecified vulnerability in the Oracle Common Applications component in Oracle Applications 11.5.10.2, 12.0.4, 12.0.5, 12.0.6, 12.1.1, 12.1.2, and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to User Management.
Exploit prediction scoring system (EPSS) score for CVE-2010-3587
Probability of exploitation activity in the next 30 days: 0.43%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 71 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-3587
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:P/A:N |
8.6
|
2.9
|
NIST |
References for CVE-2010-3587
-
http://www.vupen.com/english/advisories/2011/0144
Webmail | OVH- OVHVendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/64780
Oracle Common Applications User Management unauthorized access CVE-2010-3587 Vulnerability Report
-
http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
Oracle Critical Patch Update - January 2011Vendor Advisory
-
http://www.securityfocus.com/bid/45870
Oracle E-Business Suite CVE-2010-3587 Common Applications Component Remote Vulnerability
Products affected by CVE-2010-3587
- cpe:2.3:a:oracle:e-business_suite:11.5.10.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:e-business_suite:12.0.5:*:*:*:*:*:*:*