Vulnerability Details : CVE-2011-3538
Unspecified vulnerability in the Sun Ray component in Oracle Virtualization 4.0 allows remote attackers to affect integrity, related to Authentication. NOTE: this identifier was inadvertently used for an Oracle Industry Applications issue involving TMS Help, but that issue has been assigned CVE-2011-2323.
Products affected by CVE-2011-3538
- cpe:2.3:a:oracle:virtualization:4.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-3538
0.93%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 74 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-3538
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
References for CVE-2011-3538
-
http://www.oracle.com/technetwork/topics/security/cpuoct2011-330135.html
Oracle Critical Patch Update - October 2011Vendor Advisory
-
http://www.securityfocus.com/bid/50245
Oracle Industry Applications CVE-2011-3538 Remote Sun Ray Vulnerability
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/70811
Oracle Virtualization Sun Ray Authentication unspecified CVE-2011-3538 Vulnerability Report
-
http://secunia.com/advisories/46511
Sign inVendor Advisory
-
http://www.securitytracker.com/id?1026210
Sun Ray Authentication Component Flaw Lets Remote Users Partially Access and Modify Data and Cause Partial Denail of Service Conditions - SecurityTracker
Jump to