← back
CVE-2010-3585

CVE-2010-3585

EPSS 52.7%
Unspecified vulnerability in the OracleVM component in Oracle VM 2.2.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to ovs-agent. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a third party researcher that this is related to the exposure of unspecified functions using XML-RPC.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/16915unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.htmlhttp://www.securityfocus.com/archive/1/514611/100/0/threadedhttp://www.us-cert.gov/cas/techalerts/TA10-287A.html