Vulnerability Details CVE-2008-7238
Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.3 allow (1) local users to affect confidentiality and integrity via unknown vectors related to the Mobile Application Server component (APP01); (2) remote attackers to affect confidentiality via unknown vectors related to the Oracle Applications Framework (APP03); remote authenticated users to affect confidentiality and integrity via unknown vectors related to the (3) CRM Technical Foundation (APP05) and (4) Oracle Application Object Library (APP06); and remote authenticated users to affect integrity and availability via unknown vectors related to (5) Oracle Applications Technology Stack (APP07).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 82.3%
CVSS Severity
CVSS v2 Score 6.0
References
- http://marc.info/?l=bugtraq&m=120058413923005&w=2
- http://marc.info/?l=bugtraq&m=120058413923005&w=2
- http://secunia.com/advisories/28518
- http://secunia.com/advisories/28556
- http://securitytracker.com/id?1019218
- http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html
- http://www.osvdb.org/40284
- http://www.osvdb.org/40286
- http://www.osvdb.org/40288
- http://www.osvdb.org/40289
- http://www.osvdb.org/40290
- http://www.securityfocus.com/bid/27229
- http://www.us-cert.gov/cas/techalerts/TA08-017A.html
- http://www.vupen.com/english/advisories/2008/0150
- http://www.vupen.com/english/advisories/2008/0180
- http://marc.info/?l=bugtraq&m=120058413923005&w=2
- http://marc.info/?l=bugtraq&m=120058413923005&w=2
- http://secunia.com/advisories/28518
- http://secunia.com/advisories/28556
- http://securitytracker.com/id?1019218
- http://www.oracle.com/technetwork/topics/security/cpujan2008-086860.html
- http://www.osvdb.org/40284
- http://www.osvdb.org/40286
- http://www.osvdb.org/40288
- http://www.osvdb.org/40289
- http://www.osvdb.org/40290
- http://www.securityfocus.com/bid/27229
- http://www.us-cert.gov/cas/techalerts/TA08-017A.html
- http://www.vupen.com/english/advisories/2008/0150
- http://www.vupen.com/english/advisories/2008/0180
Products affected by CVE-2008-7238
-
cpe:2.3:a:oracle:e-business_suite:12.0.3