Vulnerability Description
Unspecified vulnerability in Oracle GlassFish Enterprise Server 3.0.1 and 3.1.1 allows remote attackers to affect confidentiality and integrity, related to JSF.
CVSS Score
6.4
MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Sun Glassfish Enterprise Server | 3.0.1 |
References
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.htmlVendor Advisory
- http://www.securitytracker.com/id?1027277
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
- http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.htmlVendor Advisory
- http://www.securitytracker.com/id?1027277
FAQ
What is CVE-2011-4358?
CVE-2011-4358 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Unspecified vulnerability in Oracle GlassFish Enterprise Server 3.0.1 and 3.1.1 allows remote attackers to affect confidentiality and integrity, related to JSF.
How severe is CVE-2011-4358?
CVE-2011-4358 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-4358?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Sun Glassfish Enterprise Server.