| |
Vulnerability CVE-2013-2397
Published: 2013-04-17 Modified: 2013-04-18
| Description: |
Unspecified vulnerability in the Oracle Retail Central Office component in Oracle Industry Applications 13.1, 13.2, 13.3, and 13.4 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Customer Operations (Add, Search). |
Type:
CWE-noinfo
CVSS2 => (AV:N/AC:L/Au:S/C:P/I:P/A:N)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
5.5/10 |
4.9/10 |
8/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
Single time |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
Partial |
None |
References: |
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
