CVE-2013-5815

Unspecified vulnerability in the Oracle Identity Analytics component in Oracle Fusion Middleware Oracle Identity Analytics 11.1.1.5 and Sun Role Manager 4.1 and 5.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html	Vendor Advisory
http://www.securitytracker.com/id/1029190

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oracle:identity_analytics:11.1.1.5:::::::*
	cpe:2.3:a:oracle:sun_role_manager:4.1:::::::*
	cpe:2.3:a:oracle:sun_role_manager:5.0:::::::*

History

No history.

Information

Published : 2013-10-16 17:55

Updated : 2024-02-28 12:00

NVD link : CVE-2013-5815

Mitre link : CVE-2013-5815

CVE.ORG link : CVE-2013-5815

JSON object : View

Products Affected

oracle

sun_role_manager
identity_analytics

CWE

NVD-CWE-noinfo

{"id": "CVE-2013-5815", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-10-16T17:55:05.583", "references": [{"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securitytracker.com/id/1029190", "source": "secalert_us@oracle.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Oracle Identity Analytics component in Oracle Fusion Middleware Oracle Identity Analytics 11.1.1.5 and Sun Role Manager 4.1 and 5.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Oracle Identiy Analytics Oracle Identity Analytics 11.1.1.5 y Sun Role Manager 4.1 y 5.0 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos relativos a Security."}], "lastModified": "2013-10-24T03:48:31.363", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:identity_analytics:11.1.1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D6E5C32-CBCA-479A-9744-3866AEB85539"}, {"criteria": "cpe:2.3:a:oracle:sun_role_manager:4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "020AF19C-FD9E-4AC7-A7A2-68EE039E0D27"}, {"criteria": "cpe:2.3:a:oracle:sun_role_manager:5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "481972E5-A8AC-49B2-A429-3172701C9525"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}