- Description
- Unspecified vulnerability in the JD Edwards EnterpriseOne Tools component in Oracle JD Edwards Products 9.1 and 9.2 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Enterprise Infrastructure SEC.
- Source
- secalert_us@oracle.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.3
- Impact score
- 9.5
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:C/I:C/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:jd_edwards_products:9.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "49EB63E0-F74D-4C36-B10A-E995FD7AAA0D"
},
{
"criteria": "cpe:2.3:a:oracle:jd_edwards_products:9.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B2E96C0D-6CC9-4083-84C5-20835C267D47"
}
],
"operator": "OR"
}
]
}
]