CVE-2013-3822

Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.1 allows remote attackers to affect integrity via unknown vectors related to Web Client (CS).

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://osvdb.org/95287
http://secunia.com/advisories/54230
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	Vendor Advisory
http://www.securityfocus.com/bid/61208
http://www.securitytracker.com/id/1028800
https://exchange.xforce.ibmcloud.com/vulnerabilities/85674
http://osvdb.org/95287
http://secunia.com/advisories/54230
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	Vendor Advisory
http://www.securityfocus.com/bid/61208
http://www.securitytracker.com/id/1028800
https://exchange.xforce.ibmcloud.com/vulnerabilities/85674

Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:supply_chain_products_suite:9.3.1:*:*:*:*:*:*:*

History

21 Nov 2024, 01:54

Type	Values Removed	Values Added
References	~~() http://osvdb.org/95287 -~~	() http://osvdb.org/95287 -
References	~~() http://secunia.com/advisories/54230 -~~	() http://secunia.com/advisories/54230 -
References	~~() http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - Vendor Advisory~~	() http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/61208 -~~	() http://www.securityfocus.com/bid/61208 -
References	~~() http://www.securitytracker.com/id/1028800 -~~	() http://www.securitytracker.com/id/1028800 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/85674 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/85674 -

Information

Published : 2013-07-17 13:41

Updated : 2025-04-11 00:51

NVD link : CVE-2013-3822

Mitre link : CVE-2013-3822

CVE.ORG link : CVE-2013-3822

JSON object : View

Products Affected

oracle

supply_chain_products_suite

CWE

NVD-CWE-noinfo

{"id": "CVE-2013-3822", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-07-17T13:41:16.977", "references": [{"url": "http://osvdb.org/95287", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/54230", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/61208", "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id/1028800", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85674", "source": "secalert_us@oracle.com"}, {"url": "http://osvdb.org/95287", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/54230", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/61208", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1028800", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85674", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle Agile PLM Framework component in Oracle Supply Chain Products Suite 9.3.1 allows remote attackers to affect integrity via unknown vectors related to Web Client (CS)."}, {"lang": "es", "value": "Vulnerabilidad sin especificar en el componente Oracle Agile PLM Framework en Oracle Supply Chain Products Suite 9.3.1 permite a usuarios autenticados remotamente comprometer la integridad a trav\u00e9s de vectores no especificados relacionados con Web Client (CS)."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:supply_chain_products_suite:9.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AF41E8FD-BDD6-4BB1-B505-F15D1535D9F9"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}