Vulnerability Details : CVE-2013-5897
Unspecified vulnerability in the Oracle Agile Product Lifecycle Management for Process component in Oracle Supply Chain Products Suite 6.0, 6.1, and 6.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Manage Data Cache.
Products affected by CVE-2013-5897
- cpe:2.3:a:oracle:supply_chain_products_suite:6.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:supply_chain_products_suite:6.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:supply_chain_products_suite:6.1.1.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2013-5897
0.22%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 59 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2013-5897
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.5
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:P/A:N |
8.0
|
4.9
|
NIST |
References for CVE-2013-5897
-
http://www.securitytracker.com/id/1029620
Oracle Supply Chain Products Suite Lets Remote Users Access and Modify Data and Remote Authenticated Users Deny Service - SecurityTrackerThird Party Advisory;VDB Entry
-
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
Oracle Critical Patch Update - January 2014Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/64823
Oracle Supply Chain Products Suite CVE-2013-5897 Remote Security VulnerabilityThird Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/64758
RETIRED: Oracle January 2014 Critical Patch Update Multiple VulnerabilitiesThird Party Advisory;VDB Entry
Jump to