CVE-2009-2030

Name: CVE-2009-2030
Creator: NVD / NIST
Published: 2009-06-11T21:30:00.25+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.83%

Last modified Jun 16, 2026

CVE-2009-2030 is a vulnerability of currently unknown severity. Unspecified vulnerability in the XML Digital Signature verification functionality in JVA-RUN in JDK 6.0 in IBM OS/400 i5/OS V5R4M0 and V6R1M0 has unknown impact and attack vectors related to "XML SECURITY PATCH.". EPSS estimates a 1.83% chance of exploitation in the next 30 days.

Description

Unspecified vulnerability in the XML Digital Signature verification functionality in JVA-RUN in JDK 6.0 in IBM OS/400 i5/OS V5R4M0 and V6R1M0 has unknown impact and attack vectors related to "XML SECURITY PATCH."

Metrics

EPSS Probability

1.83%

76.1th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Sun	Jdk	6
Ibm	Os\/400	v5r4m0
Ibm	Os\/400	v6r1m0

References

http://secunia.com/advisories/35356Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2741c96b7c573b81a862575cc003c726ePatch, Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2e858199605d67111862575cc003c7276Patch, Vendor Advisory
http://www.attrition.org/pipermail/vim/2009-June/002190.html
http://www.securityfocus.com/bid/35265
http://www.vupen.com/english/advisories/2009/1536Patch, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/51005
http://secunia.com/advisories/35356Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2741c96b7c573b81a862575cc003c726ePatch, Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=nas2e858199605d67111862575cc003c7276Patch, Vendor Advisory
http://www.attrition.org/pipermail/vim/2009-June/002190.html
http://www.securityfocus.com/bid/35265
http://www.vupen.com/english/advisories/2009/1536Patch, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/51005

Timeline

Published: Jun 11, 2009
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2009-2030?

How severe is CVE-2009-2030?

Severity scoring for CVE-2009-2030 is pending analysis. The EPSS model estimates a 1.83% probability of exploitation in the next 30 days.

How do I fix CVE-2009-2030?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2009-2030?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST