CVE-2013-3776

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3781...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 7.4.0 and 7.5.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2013-3764...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 7.4.0 and 7.5.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2013-3763...

Design/Logic Flaw

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5.0 allows remote attackers to affect integrity via vectors related to SSO Engine...

Design/Logic Flaw

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Site Studio...

Buffer overflow

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3781...

Oracle July 2013 Critical Patch Update patches 89 Flaws

It may not be the highest priority patch among the 89 released by Oracle yesterday in its July Critical Patch Update CPU, but a fix for an Outside In Technology vulnerability in Oracle’s Fusion middleware merits some extra attention. Oracle provides the technology in several of its products in...

CVE-2013-3764

Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 7.4.0 and 7.5.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2013-3763...

CVE-2013-3769

CVE-2013-3769 relates to Oracle WebCenter Content in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0. The connected Nessus/plugin data indicates multiple vulnerabilities in WebCenter Content components (Content Server, Site Studio, Web Forms) that could impact integrity via unspec...

CVE-2013-3770

Technical details about CVE-2013-3770 are not publicly provided in the supplied documents; no affected product versions, root cause, or remediation are disclosed here. Monitor for updates from official advisories.

CVE-2013-3763

The CVE-2013-3763 vector is a command-injection vulnerability in Oracle Endeca Server (Oracle Fusion Middleware) affecting 7.4.0 and 7.5.1.1 via the controlSoapBinding createDataStore method. Connected advisories (CPAIs) describe remote command execution with a flaw that can be exploited by sendi...

CVE-2013-3781

Technical details for CVE-2013-3781 are not publicly provided in the supplied documents; monitor for updates.

CVE-2013-3755

Unspecified vulnerability in the Oracle Access Manager component in Oracle Fusion Middleware 11.1.1.5.0 allows remote attackers to affect integrity via vectors related to SSO Engine...

CVE-2013-3776

Technical details about CVE-2013-3776 are not publicly provided in the supplied documents. The materials reference related CVEs and advisories but do not disclose affected products, root cause, impact, or fixes. Monitor for updates.

CVE-2013-3772

CVE-2013-3772 affects Oracle WebCenter Content within Oracle Fusion Middleware versions 10.1.3.5.1, 11.1.1.6.0 and 11.1.1.7.0. The vulnerability is described as unspecified and allows remote attackers to affect integrity via unknown vectors related to Web Forms. The connected Nessus record links ...

CVE-2013-3769

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Site Studio...

CVE-2013-3776

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3781...

CVE-2013-3764

CVE-2013-3763 (and related CVE-2013-3764) targets Oracle Endeca Server in Oracle Fusion Middleware 7.4.0 and 7.5.1.1. The vulnerability resides in the createDataStore method of the controlSoapBinding web service, enabling arbitrary command injection and remote command execution. Public proofs-of-...

CVE-2013-3755

Technical details for CVE-2013-3755 are not publicly available in the provided documents. Monitor for updates.

CVE-2013-3772

Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 10.1.3.5.1, 11.1.1.6.0, and 11.1.1.7.0 allows remote attackers to affect integrity via unknown vectors related to Web Forms...