CVE-2013-5375

{"id": "CVE-2013-5375", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-11-24T18:55:04.273", "references": [{"url": "http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00013.html", "source": "psirt@us.ibm.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1507.html", "source": "psirt@us.ibm.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1508.html", "source": "psirt@us.ibm.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1509.html", "source": "psirt@us.ibm.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2013-1793.html", "source": "psirt@us.ibm.com"}, {"url": "http://secunia.com/advisories/56338", "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV51089", "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV51090", "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21655201", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21655202", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/86901", "source": "psirt@us.ibm.com"}, {"url": "https://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_November_2013", "tags": ["Vendor Advisory"], "source": "psirt@us.ibm.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in IBM Java SDK 7.0.0 before SR6, 6.0.1 before SR7, 6.0.0 before SR15, and 5.0.0 before SR16 FP4 allows remote attackers to access restricted classes via unspecified vectors related to XML and XSL."}, {"lang": "es", "value": "Vulnerabilidad no especificada en IBM Java SDK 7.0.0 anteriores a SR6, 6.0.1 anteriores a SR7, 6.0.0 anteriores a SR15, y 5.0.0 anteriores a SR16 FP4 permite a atacantes remotos acceder a clases restringidas a trav\u00e9s de vectores no especificados relacionados con XML y XSL."}], "lastModified": "2017-08-29T01:33:44.450", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ibm:java:5.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03D3F84F-3F6E-4DF1-B162-152293D951EA"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14AD4A87-382A-41F0-96D8-0F0A9B738773"}, {"criteria": "cpe:2.3:a:ibm:java:6.0.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33701DDF-6882-41D3-A11B-A1F4585A77A7"}, {"criteria": "cpe:2.3:a:ibm:java:7.0.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A8BF650-B8F5-467E-8DBF-81788B55F345"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@us.ibm.com"}