Vulnerability Details : CVE-2010-0311
Unspecified vulnerability in Sun Java System Identity Manager (aka IdM) 8.1.0.5 and 8.1.0.6, when Sun Java System Access Manager, OpenSSO Enterprise 8.0, or IBM Tivoli Access Manager is used, allows remote attackers to obtain administrative access via unknown vectors.
Products affected by CVE-2010-0311
- cpe:2.3:a:sun:java_system_identity_server:8.1.0.5:*:*:*:*:*:*:*When used together with: IBM » Tivoli Access Manager For E-businessWhen used together with: SUN » Java System Access Manager
- cpe:2.3:a:sun:java_system_identity_server:8.1.0.6:*:*:*:*:*:*:*When used together with: IBM » Tivoli Access Manager For E-businessWhen used together with: SUN » Java System Access Manager
Exploit prediction scoring system (EPSS) score for CVE-2010-0311
1.35%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 78 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2010-0311
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
References for CVE-2010-0311
-
http://securitytracker.com/id?1023447
Sun Java System Identity Manager Flaw Grants Remote Users Administrative Access - SecurityTracker
-
http://sunsolve.sun.com/search/document.do?assetkey=1-21-141642-08-1
Patch
-
http://sunsolve.sun.com/search/document.do?assetkey=1-66-275010-1
Vendor Advisory
-
http://secunia.com/advisories/38130
Sign inVendor Advisory
-
http://www.securityfocus.com/bid/37755
Sun Java System Identity Manager Privilege Escalation Vulnerability
-
http://osvdb.org/61658
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/55572
Sun Java System Identity Manager (IdM) unspecified security bypass CVE-2010-0311 Vulnerability Report
-
http://www.vupen.com/english/advisories/2010/0108
Webmail | OVH- OVHVendor Advisory
Jump to