CVE-2013-3779

{"id": "CVE-2013-3779", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-07-17T13:41:16.757", "references": [{"url": "http://osvdb.org/95319", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/54238", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/61226", "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id/1028793", "source": "secalert_us@oracle.com"}, {"url": "http://osvdb.org/95319", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/54238", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/61226", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1028793", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization All 4.6 releases including 4.63 and 4.7 prior to 4.71 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web UI."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Secure Global Desktop en Oracle Virtualization All v4.6 incluido v4.63 y v4.7 pervio a v4.71 permite a los usuarios remotos autenticados afectar a la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos relacionados con Web UI."}], "lastModified": "2024-11-21T01:54:16.863", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:virtualization:4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F4EB8B7-9984-42D3-847C-91FF753D159A"}, {"criteria": "cpe:2.3:a:oracle:virtualization:4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4946E73A-27B2-4BF2-8372-65D81D42272E"}, {"criteria": "cpe:2.3:a:oracle:virtualization:4.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CFB307EC-F585-4912-9DF0-66333FFF966A"}, {"criteria": "cpe:2.3:a:oracle:virtualization:4.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A861D950-EF90-4384-A904-DB7742DFAE1B"}, {"criteria": "cpe:2.3:a:oracle:virtualization:4.63:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A7DA626-EC3E-4066-A7DD-14D42B3DAE75"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DAE783C-6D98-4DC1-8358-874940D54E7E"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CF3FD992-486A-4037-9D87-8F9D57DB485C"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "77388DA3-2A64-443D-A41F-935C10834F18"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.62:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5E4FC2E-85DA-48D3-9410-8172662B94C6"}, {"criteria": "cpe:2.3:a:oracle:vm_virtualbox:4.63:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA5245A9-2A2C-4153-913A-085F5A6AF29A"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}