CVE-2011-4358 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.4 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:P/I:P/A:N
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 45%

Vendor	Product	Version
oracle	sun_glassfish_enterprise_server	3.0.1
oracle	sun_glassfish_enterprise_server	3.1.1

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

mojarra

sid	2.2.8-6 fixed
trixie	2.2.8-6 fixed
bookworm	2.2.8-6 fixed
bullseye	2.2.8-6 fixed

Ubuntu Releases

Ubuntu Product

Codename

mojarra

oneiric	Fixed 2.0.3-1+squeeze1build0.11.10.1 released
natty	Fixed 2.0.3-1+squeeze1build0.11.04.1 released
maverick	Fixed 2.0.3-1+squeeze1build0.10.10.1 released
lucid	dne
hardy	dne

References

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

http://www.securitytracker.com/id?1027277

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

http://www.securitytracker.com/id?1027277