CVE-2013-3776 : Unspecified vulnerability in the Oracle Outside In Technology component in Oracl

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7, 8.4.0, and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-3781.

Published 2013-07-17 13:41:17

Updated 2025-04-11 00:51:22

Source Oracle

View at NVD, CVE.org

Products affected by CVE-2013-3776

Oracle » Fusion Middleware » Version: 8.3.7.0
cpe:2.3:a:oracle:fusion_middleware:8.3.7.0:*:*:*:*:*:*:*
Matching versions
Oracle » Fusion Middleware » Version: 8.4
cpe:2.3:a:oracle:fusion_middleware:8.4:*:*:*:*:*:*:*
Matching versions
Oracle » Fusion Middleware » Version: 8.4.1
cpe:2.3:a:oracle:fusion_middleware:8.4.1:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2013-3776

EPSS FAQ

0.99%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 75 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2013-3776

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.8	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P	8.6	6.4	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2013-3776

http://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000071.html

JVNDB-2013-000071 - JVN iPedia
http://jvn.jp/en/jp/JVN68663052/index.html

JVN#68663052: Oracle Outside In vulnerable to denial-of-service (DoS)
http://www.securitytracker.com/id/1028801

Oracle Fusion Middleware Bugs Let Remote Users Deny Service and Access and Modify Data - SecurityTracker

CVEs referencing this url
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-061

Microsoft Security Bulletin MS13-061 - Critical | Microsoft Docs

CVEs referencing this url
http://www.securityfocus.com/bid/61234

Oracle Outside In Technology CVE-2013-3776 Local Security Vulnerability
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18243

Repository / Oval Repository
http://osvdb.org/95276
https://exchange.xforce.ibmcloud.com/vulnerabilities/85663

Oracle Outside In Technology Outside In Filters denial of service CVE-2013-3776 Vulnerability Report
http://www-01.ibm.com/support/docview.wss?uid=swg21660640

Security Bulletin: Fix available for security vulnerabilities in Oracle Outside In Technology Code contained in IBM WebSphere Portal

CVEs referencing this url
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html

Oracle Critical Patch Update - July 2013
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2013-3776

Products affected by CVE-2013-3776

Exploit prediction scoring system (EPSS) score for CVE-2013-3776

CVSS scores for CVE-2013-3776

References for CVE-2013-3776