Vulnerability Details : CVE-2013-5837
Unspecified vulnerability in the Oracle Health Sciences InForm component in Oracle Industry Applications 4.6 SP0, 4.6 SP0a-c, 4.6 SP1, 4.6 SP1a-c, 4.6 SP2, 4.6 SP2a-c, 5.0 SP0, 5.0 SP0a, 5.0 SP1, 5.0 SP1a-b, 5.0.3, and 5.0.4 allows remote authenticated users to affect confidentiality via unknown vectors related to Cognos.
Exploit prediction scoring system (EPSS) score for CVE-2013-5837
Probability of exploitation activity in the next 30 days: 0.09%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 35 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2013-5837
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
2.1
|
LOW | AV:N/AC:H/Au:S/C:P/I:N/A:N |
3.9
|
2.9
|
NIST |
References for CVE-2013-5837
-
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
Oracle Critical Patch Update - October 2013Vendor Advisory
-
http://www.securityfocus.com/bid/63081
Oracle Industry Applications CVE-2013-5837 Remote Security Vulnerability
Products affected by CVE-2013-5837
- cpe:2.3:a:oracle:industry_applications:5.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp0:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp0a:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:5.0:sp0:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:5.0:sp0a:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:5.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:5.0:sp1a:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp1c:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp2b:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp2c:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:5.0:sp1b:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp1a:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp2a:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp0c:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp1:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp2:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp0b:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:4.6:sp1b:*:*:*:*:*:*
- cpe:2.3:a:oracle:industry_applications:5.0.4:*:*:*:*:*:*:*