CVE-2013-3770

🗓️ 17 Jul 2013 13:16:41Reported by oracleType

Unspecified vulnerability in Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote authenticated users to affect confidentiality and integrity. NOTE: Previous info is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is related to "iDoc script injection" in cs and urm components, allowing attackers to read "sensitive" files

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2013-3770	17 Jul 201310:00	–	cvelist
NVD	CVE-2013-3770	17 Jul 201313:41	–	nvd
Prion	Design/Logic Flaw	17 Jul 201313:41	–	prion
Tenable Nessus	Oracle WebCenter Content (July 2013 CPU)	20 Aug 201300:00	–	nessus
securityvulns	Oracle / Sun / MySQL / PeopleSoft applications multiple security vulnerabilities	12 Aug 201300:00	–	securityvulns
Oracle	Oracle Critical Patch Update - July 2013	16 Jul 201300:00	–	oracle

Nvd

Node

oracle fusion_middlewareMatch10.1.3.5.1

oracle fusion_middlewareMatch11.1.1.6.0

oracle fusion_middlewareMatch11.1.1.7.0

Source	Link
securitytracker	www.securitytracker.com/id/1028801
secunia	www.secunia.com/advisories/54227
securityfocus	www.securityfocus.com/bid/61228
oracle	www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html
verisigninc	www.verisigninc.com/en_US/products-and-services/network-intelligence-availability/idefense/public-vulnerability-reports/articles/index.xhtml
osvdb	www.osvdb.org/95271
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/85658

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 Jul 2013 13:41Current

4.9Medium risk

Vulners AI Score4.9

CVSS25.5

EPSS0.00254