{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T02:10:17.507","vulnerabilities":[{"cve":{"id":"CVE-2009-1796","sourceIdentifier":"cve@mitre.org","published":"2009-05-26T22:30:00.170","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in Sun Java System Portal Server 6.3.1, 7.1, and 7.2 allows remote attackers to inject arbitrary web script or HTML via vectors related to an error page."},{"lang":"es","value":"Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Sun Java System Portal Server v6.3.1, v7.1, y v7.2, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores relacionados con una pagina de error."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:6.3.1:*:*:*:*:*:*:*","matchCriteriaId":"5079DD4A-F14E-4ABD-B5DA-4DC75135EF5B"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:6.3.1:*:linux:*:*:*:*:*","matchCriteriaId":"9701D793-7080-4272-B657-C17B5CEBE20C"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:6.3.1:*:sparc:*:*:*:*:*","matchCriteriaId":"E5AFFD01-488F-43DE-BAAD-8D77AB2AEE98"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:6.3.1:*:x86:*:*:*:*:*","matchCriteriaId":"4BA6693B-153C-4A7B-BE2C-3897F9B74346"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.1:*:*:*:*:*:*:*","matchCriteriaId":"A29331A7-9D72-489D-A8DF-5B4C18A19692"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.1:*:linux:*:*:*:*:*","matchCriteriaId":"A67F6B05-8B6D-4C48-8094-01600589863E"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.1:*:sparc:*:*:*:*:*","matchCriteriaId":"79E7CFAA-1CBF-4671-8602-E1160F25504C"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.1:*:x86:*:*:*:*:*","matchCriteriaId":"0E4E8DC1-130F-40EB-9C7F-E951C457406D"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.2:*:*:*:*:*:*:*","matchCriteriaId":"83D63923-869B-4156-BBED-DFB417B19420"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.2:*:linux:*:*:*:*:*","matchCriteriaId":"3BDF3AEA-DD1C-4BE1-A8B1-CEA5A5F6DFA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.2:*:sparc:*:*:*:*:*","matchCriteriaId":"FAA736B8-818E-4F17-BE10-BA8BDD08A41F"},{"vulnerable":true,"criteria":"cpe:2.3:a:sun:java_system_portal_server:7.2:*:x86:*:*:*:*:*","matchCriteriaId":"CCF640FC-9D89-4B02-B6FA-C789FDFD37C4"}]}]}],"references":[{"url":"http://osvdb.org/54705","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/35221","source":"cve@mitre.org"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-21-118950-38-1","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-256588-1","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/35082","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.securitytracker.com/id?1022273","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2009/1411","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/50704","source":"cve@mitre.org"},{"url":"http://osvdb.org/54705","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/35221","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-21-118950-38-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-256588-1","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/35082","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.securitytracker.com/id?1022273","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2009/1411","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/50704","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}