CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2010-0835
https://notcve.org/view.php?id=CVE-2010-0835
Unspecified vulnerability in the Wireless component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Wireless de Oracle Fusion Middleware v10.1.2.3, permite a atacantes remotos afectar la integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html •
CVSS: 3.5EPSS: 0%CPEs: 2EXPL: 0CVE-2010-0081
https://notcve.org/view.php?id=CVE-2010-0081
Unspecified vulnerability in the Application Server Control component in Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1 allows remote authenticated users to affect integrity via unknown vectors, a different vulnerability than CVE-2010-2381. Vulnerabilidad no especificada en el componente Application Server Control en Oracle Fusion Middleware 10.1.2.3 y 10.1.4.0.1 permite a usuarios remotos autenticados afectar la integridad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2010-2381. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html •
CVSS: 7.5EPSS: 2%CPEs: 14EXPL: 5CVE-2010-1622 – Spring Framework - Arbitrary code Execution
https://notcve.org/view.php?id=CVE-2010-1622
SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoader.URLs[0]=jar: followed by a URL of a crafted .jar file. SpringSource Spring Framework v2.5.x anteriores a v2.5.6.SEC02, v2.5.7 anteriores a v2.5.7.SR01, y v3.0.x anteriores a v3.0.3 permite a atacantes remotos ejecutar código arbitrario a través de una petición HTTP que contenga class.classLoader.URLs[0]=jar: seguida por una URL de un fichero .jar modificado. • https://www.exploit-db.com/exploits/13918 https://github.com/HandsomeCat00/Spring-CVE-2010-1622 http://geronimo.apache.org/2010/07/21/apache-geronimo-v216-released.html http://geronimo.apache.org/21x-security-report.html http://geronimo.apache.org/22x-security-report.html http://secunia.com/advisories/41016 http://secunia.com/advisories/41025 http://secunia.com/advisories/43087 http://www.exploit-db.com/exploits/13918 http://www.oracle.com/technetwork/topics/security/cpuoct2015-236 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-96: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2010-0855
https://notcve.org/view.php?id=CVE-2010-0855
Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2010-0086. Vulnerabilidad no especificada en el componente Portal en Oracle Fusion Middleware 10.1.2.3 permite a atacantes remotos afectar a la integridad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2010-0086. • http://secunia.com/advisories/39439 http://www.oracle.com/technetwork/topics/security/cpuapr2010-099504.html http://www.securitytracker.com/id?1023869 http://www.us-cert.gov/cas/techalerts/TA10-103B.html •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2010-0086
https://notcve.org/view.php?id=CVE-2010-0086
Unspecified vulnerability in the Portal component in Oracle Fusion Middleware 10.1.2.3 allows remote attackers to affect integrity via unknown vectors, a different vulnerability than CVE-2010-0855. Vulnerabilidad no especificada en el componente Portal en Oracle Fusion Middleware 10.1.2.3 permite a atacantes remotos afectar a la integridad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2010-0855. • http://secunia.com/advisories/39439 http://www.oracle.com/technetwork/topics/security/cpuapr2010-099504.html http://www.securitytracker.com/id?1023869 http://www.us-cert.gov/cas/techalerts/TA10-103B.html •