Lucene search

OracleCVE-2013-2441

HistoryApr 17, 2013 - 5:55 p.m.

CVE-2013-2441

2013-04-1717:55:07

oracle

web.nvd.nist.gov

cve-2013-2441

oracle

supply chain

vulnerability

agile edm

integrity

java client

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

AI Score

5.5

Confidence

Low

EPSS

0.001

Percentile

35.6%

JSON

Unspecified vulnerability in the Agile EDM component in Oracle Supply Chain Products Suite 6.1.1.0, 6.1.2.0, and 6.1.2.2 allows remote authenticated users to affect integrity via unknown vectors related to Java Client.

Affected configurations

Nvd

Node

oraclesupply_chain_products_suiteMatch6.1.1.0

oraclesupply_chain_products_suiteMatch6.1.2.0

oraclesupply_chain_products_suiteMatch6.1.2.2

VendorProductVersionCPE
oraclesupply_chain_products_suite6.1.1.0cpe:2.3:a:oracle:supply_chain_products_suite:6.1.1.0:*:*:*:*:*:*:*
oraclesupply_chain_products_suite6.1.2.0cpe:2.3:a:oracle:supply_chain_products_suite:6.1.2.0:*:*:*:*:*:*:*
oraclesupply_chain_products_suite6.1.2.2cpe:2.3:a:oracle:supply_chain_products_suite:6.1.2.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	supply_chain_products_suite	6.1.1.0	cpe:2.3:a:oracle:supply_chain_products_suite:6.1.1.0:::::::*
oracle	supply_chain_products_suite	6.1.2.0	cpe:2.3:a:oracle:supply_chain_products_suite:6.1.2.0:::::::*
oracle	supply_chain_products_suite	6.1.2.2	cpe:2.3:a:oracle:supply_chain_products_suite:6.1.2.2:::::::*

References

www.mandriva.com/security/advisories?name=MDVSA-2013:150

www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:N/I:P/A:N

AI Score

5.5

Confidence

Low

EPSS

0.001

Percentile

35.6%

JSON

Related for CVE-2013-2441