Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-2589

EPSS 0.49% · P66
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-2589

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Unspecified vulnerability in the Oracle Portal component in Oracle Application Server 9.0.4.3, 10.1.2.2, and 10.1.4.1 has unknown impact and remote attack vectors. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on reliable researcher claims that this issue is a SQL injection vulnerability in the WWV_RENDER_REPORT package that allows remote attackers to execute arbitrary SQL (PL/SQL) commands via the second argument to the SHOW procedure.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Oracle Application Server Portal 组件远程攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Oracle Database是一款商业性质大型数据库系统。 Oracle Application Server 9.0.4.3, 10.1.2.2, 10.1.4.1中的Portal 组件存在未明漏洞。此漏洞具有未知的影响和远程攻击向量。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-2589

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-2589

Please Login to view more intelligence information

Same Patch Batch · n/a · 2008-07-15 · 54 CVEs total

CVE-2008-2615Oracle PeopleSoft Enterprise 、 JD Edwards EnterpriseOne PeopleSoft PeopleTools 组件未知远程攻击漏洞
CVE-2008-3183GAPI CMS 'toolbar.php' 远程文件包含漏洞
CVE-2008-3178WebXell Editor 'upload_pictures.php' 任意文件上传漏洞
CVE-2008-3181ContentNow CMS 文件上传安全漏洞
CVE-2008-3180ContentNow CMS 脚本跨站漏洞
CVE-2008-3179Web 2 Business phpDatingClub 路径遍历漏洞
CVE-2008-3182Download Accelerator Plus .m3u文件处理栈溢出溢出漏洞
CVE-2008-2618Oracle PeopleSoft Enterprise 、 JD Edwards EnterpriseOne PeopleSoft PeopleTools 组件未知远程攻击漏洞
CVE-2008-2617Oracle 2008年7月紧急补丁更新修复多个漏洞
CVE-2008-2616Oracle PeopleSoft Enterprise 、 JD Edwards EnterpriseOne PeopleSoft PeopleTools 组件未知远程攻击漏洞
CVE-2008-2620Oracle PeopleSoft Enterprise 、 JD Edwards EnterpriseOne PeopleSoft PeopleTools 组件未知远程攻击漏洞
CVE-2008-2614Oracle http server 组件 未知安全漏洞
CVE-2008-2613Oracle Database Scheduler 组件本地未知安全漏洞
CVE-2008-2612Oracle Application Server Hyperion BI Plus 组件未知远程攻击漏洞
CVE-2008-2611Oracle Core RDBMS 组件远程认证攻击漏洞
CVE-2008-2610Oracle Application Technology stack 组件远程认证攻击漏洞
CVE-2008-2609Oracle Portal 组件未知远程攻击漏洞
CVE-2008-2608Oracle Data Pump 组件远程认证攻击漏洞
CVE-2008-2607Oracle Advanced Queuing 组件远程认证攻击漏洞
CVE-2008-2606Oracle Oracle E-Business Suite Application Object Library 组件远程认证攻击漏洞

Showing top 20 of 54 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-2589

No comments yet

Leave a comment