CVE-2013-3775

Unspecified vulnerability in the Oracle iLearning component in Oracle iLearning 5.2.1 and 6.0 allows remote attackers to affect integrity via unknown vectors related to Learner Pages.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://osvdb.org/95301
http://secunia.com/advisories/54216
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	Vendor Advisory
http://www.securityfocus.com/bid/61270
http://www.securitytracker.com/id/1028798
https://exchange.xforce.ibmcloud.com/vulnerabilities/85688

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:ilearning:5.2.1:::::::*
	cpe:2.3:a:oracle:ilearning:6.0:::::::*

History

No history.

Information

Published : 2013-07-17 13:41

Updated : 2017-08-29 01:33

NVD link : CVE-2013-3775

Mitre link : CVE-2013-3775

CVE.ORG link : CVE-2013-3775

JSON object : View

Products Affected

oracle

ilearning

CWE

NVD-CWE-noinfo

{"id": "CVE-2013-3775", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-07-17T13:41:16.733", "references": [{"url": "http://osvdb.org/95301", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/54216", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/61270", "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id/1028798", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85688", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle iLearning component in Oracle iLearning 5.2.1 and 6.0 allows remote attackers to affect integrity via unknown vectors related to Learner Pages."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Oracle iLearning en Oracle iLearning v5.2.1 y v6.0 permite a atacantes remotos afectar la integridad mediante vectores relacionados con Learner Pages."}], "lastModified": "2017-08-29T01:33:27.543", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:ilearning:5.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC58A82D-D752-4E4F-BF57-11C3FFE005A4"}, {"criteria": "cpe:2.3:a:oracle:ilearning:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "784DB4BA-4B8F-472A-8B08-1237B19CAB38"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}