Vulnerability Details : CVE-2013-5868
Unspecified vulnerability in the Oracle AutoVue Electro-Mechanical Professional component in Oracle Supply Chain Products Suite 20.1.1 allows remote authenticated users to affect confidentiality via unknown vectors related to Web General, a different vulnerability than CVE-2013-5871 and CVE-2014-0444.
Products affected by CVE-2013-5868
- cpe:2.3:a:oracle:supply_chain_products_suite:20.1.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-5868
0.22%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 60 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-5868
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.5
|
LOW | AV:N/AC:M/Au:S/C:P/I:N/A:N |
6.8
|
2.9
|
NIST |
References for CVE-2013-5868
-
http://www.securitytracker.com/id/1029620
Oracle Supply Chain Products Suite Lets Remote Users Access and Modify Data and Remote Authenticated Users Deny Service - SecurityTracker
-
http://www.securityfocus.com/bid/64879
Oracle Supply Chain Products Suite CVE-2013-5868 Remote Security Vulnerability
-
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
Oracle Critical Patch Update - January 2014Vendor Advisory
-
http://www.securityfocus.com/bid/64758
RETIRED: Oracle January 2014 Critical Patch Update Multiple Vulnerabilities
Jump to