CVE-2013-3778 - OpenCVE

Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6 and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Help.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Oracle	E-business Suite

Configuration 1 [-]

OR	cpe:2.3:a:oracle:e-business_suite:12.0.6:::::::*
	cpe:2.3:a:oracle:e-business_suite:12.1.3:::::::*

References

Link	Resource
http://osvdb.org/95283
http://secunia.com/advisories/54222
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	Vendor Advisory
http://www.securityfocus.com/bid/61276
http://www.securitytracker.com/id/1028799
https://exchange.xforce.ibmcloud.com/vulnerabilities/85670

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: oracle

Published: 2013-07-17T10:00:00

Updated: 2017-08-28T12:57:01

Reserved: 2013-06-03T00:00:00

Link: CVE-2013-3778

JSON object: View

NVD Information

Status : Modified

Published: 2013-07-17T13:41:16.750

Modified: 2017-08-29T01:33:27.730

Link: CVE-2013-3778

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-noinfo

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-07-16T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6 and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Help."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "43595867-4340-4103-b7a2-9a5208d29a85", "shortName": "oracle"}, "references": [{"name": "95283", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/95283"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html"}, {"name": "61276", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/61276"}, {"name": "1028799", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1028799"}, {"name": "oracle-cpujuly2013-cve20133778(85670)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85670"}, {"name": "54222", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/54222"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert_us@oracle.com", "ID": "CVE-2013-3778", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6 and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Help."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "95283", "refsource": "OSVDB", "url": "http://osvdb.org/95283"}, {"name": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "refsource": "CONFIRM", "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html"}, {"name": "61276", "refsource": "BID", "url": "http://www.securityfocus.com/bid/61276"}, {"name": "1028799", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1028799"}, {"name": "oracle-cpujuly2013-cve20133778(85670)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85670"}, {"name": "54222", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/54222"}]}}}}, "cveMetadata": {"assignerOrgId": "43595867-4340-4103-b7a2-9a5208d29a85", "assignerShortName": "oracle", "cveId": "CVE-2013-3778", "datePublished": "2013-07-17T10:00:00", "dateReserved": "2013-06-03T00:00:00", "dateUpdated": "2017-08-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:oracle:e-business_suite:12.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "4C6BAB4D-1DF5-4ECB-A07E-297A94664BBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:oracle:e-business_suite:12.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "9E42C3CE-CA98-4C13-B41E-DF7A3FEC560F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.6 and 12.1.3 allows remote attackers to affect integrity via unknown vectors related to Help."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Oracle Applications Technology Stack en Oracle E-Business Suite v12.0.6 y v12.1.3 permite a los usuarios remotos afectar a la integridad a trav\u00e9s de vectores desconocidos relacionados con Help."}], "id": "CVE-2013-3778", "lastModified": "2017-08-29T01:33:27.730", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-07-17T13:41:16.750", "references": [{"source": "secalert_us@oracle.com", "url": "http://osvdb.org/95283"}, {"source": "secalert_us@oracle.com", "url": "http://secunia.com/advisories/54222"}, {"source": "secalert_us@oracle.com", "tags": ["Vendor Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html"}, {"source": "secalert_us@oracle.com", "url": "http://www.securityfocus.com/bid/61276"}, {"source": "secalert_us@oracle.com", "url": "http://www.securitytracker.com/id/1028799"}, {"source": "secalert_us@oracle.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85670"}], "sourceIdentifier": "secalert_us@oracle.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}