Vulnerability Database

313,825

Total vulnerabilities in the database

CVE-2010-4438

Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service (JMS).

Published: Jan 19, 2011
Updated: Nov 9, 2025
CVE: CVE-2010-4438
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.7
AV:L/AC:L/Au:S/C:P/I:P/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
oracle / glassfish_server	2.1	2.1.x
oracle / glassfish_server	2.1.1	2.1.1.x
oracle / glassfish_server	3.0.1	3.0.1.x
oracle / java_system_message_queue	4.1	4.1.x

http://osvdb.org/70572
http://osvdb.org/70573
http://secunia.com/advisories/42988
http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
http://www.securityfocus.com/bid/45890
http://www.vupen.com/english/advisories/2011/0155
https://exchange.xforce.ibmcloud.com/vulnerabilities/64813

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo