VDB
CVE-2018-1258
CVE-2018-1258
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Mit der Unified Communications Suite bietet Oracle eine Messaging- und Collaboration-Plattform an. Oracle Communications Policy Management ist ein Produkt von Oracle und vereint mehrere Bereiche der Kommunikation. Oracle Communications Unified Inventory Management (UIM) ist eine offene, standardbasierte Anwendung, die eine Bestandsaufnahme von Kommunikationsdiensten und -ressourcen ermöglicht.
EPSS 0.26% · 50.3th percentile
Risk Scores
CVSS 4.0
9.300000190734863
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.26%
50.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Oracle Communications Messaging Server 8.0 | |
| Ubuntu | Ubuntu Linux | |
| oracle | Oracle Communications Unified Inventory Management 7.3.2 | |
| Oracle | Oracle Communications Policy Management 12.2 | |
| Oracle | Oracle Communications Policy Management 12.4 | |
| Xerox | Xerox FreeFlow Print Server 9 | |
| oracle | Oracle Communications Unified Inventory Management 7.4.0 | |
| Oracle | Oracle Communications Session Border Controller 8.0.0 | |
| Oracle | Oracle Communications Service Broker 6.0 | |
| Oracle | Oracle Enterprise Communications Broker 3.1.0 | |
| Oracle | Oracle Enterprise Communications Broker 3.0.0 | |
| Oracle | Oracle Communications EAGLE LNP Application Processor 10.0 | |
| oracle | Oracle Communications Unified Inventory Management 7.3.4 | |
| Oracle | Oracle Communications Session Border Controller 8.2.0 | |
| Oracle | Oracle Communications LSMS 13.3 | |
| Oracle | Oracle Communications EAGLE LNP Application Processor 10.1 | |
| Oracle | Oracle Communications Messaging Server 8.1 | |
| oracle | Oracle Communications Unified Inventory Management 7.3.5 | |
| Oracle | Oracle Communications LSMS 13.2 | |
| Oracle | Oracle Utilities Applications |
…and 6 more
Exploit Intelligence
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
- indicator_tools.yar (github-yara)
…and 60 more exploits
Timeline
- May 9, 2018 CVE Published
- Oct 3, 2019 CVE Updated
- Oct 2, 2020 PoC Published
- Nov 6, 2020 PoC Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Sep 6, 2021 PoC Published
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2025-1212.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1212 advisory
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixCGBU advisory
- https://usn.ubuntu.com/4218-1/ advisory
- https://security.business.xerox.com/wp-content/uploads/2025/06/Xerox-Security-Bulletin-XRX25-012-for-Xerox-FreeFlow-Print-Server-v9.pdf advisory
- https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2025-1660.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1660 advisory
- https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html#AppendixUTIL advisory
- http://linux.oracle.com/errata/ELSA-2025-11888.html advisory