Lucene search

OracleCVE-2013-3779

HistoryJul 17, 2013 - 1:41 p.m.

CVE-2013-3779

2013-07-1713:41:16

oracle

web.nvd.nist.gov

cve-2013-3779

unspecified vulnerability

secure global desktop

oracle virtualization

remote attackers

confidentiality

integrity

availability

web ui

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.007

Percentile

79.9%

JSON

Unspecified vulnerability in the Secure Global Desktop component in Oracle Virtualization All 4.6 releases including 4.63 and 4.7 prior to 4.71 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Web UI.

Affected configurations

Nvd

Node

oraclevirtualizationMatch4.6

oraclevirtualizationMatch4.7

oraclevirtualizationMatch4.61

oraclevirtualizationMatch4.62

oraclevirtualizationMatch4.63

oraclevm_virtualboxMatch4.6

oraclevm_virtualboxMatch4.7

oraclevm_virtualboxMatch4.61

oraclevm_virtualboxMatch4.62

oraclevm_virtualboxMatch4.63

VendorProductVersionCPE
oraclevirtualization4.6cpe:2.3:a:oracle:virtualization:4.6:*:*:*:*:*:*:*
oraclevirtualization4.7cpe:2.3:a:oracle:virtualization:4.7:*:*:*:*:*:*:*
oraclevirtualization4.61cpe:2.3:a:oracle:virtualization:4.61:*:*:*:*:*:*:*
oraclevirtualization4.62cpe:2.3:a:oracle:virtualization:4.62:*:*:*:*:*:*:*
oraclevirtualization4.63cpe:2.3:a:oracle:virtualization:4.63:*:*:*:*:*:*:*
oraclevm_virtualbox4.6cpe:2.3:a:oracle:vm_virtualbox:4.6:*:*:*:*:*:*:*
oraclevm_virtualbox4.7cpe:2.3:a:oracle:vm_virtualbox:4.7:*:*:*:*:*:*:*
oraclevm_virtualbox4.61cpe:2.3:a:oracle:vm_virtualbox:4.61:*:*:*:*:*:*:*
oraclevm_virtualbox4.62cpe:2.3:a:oracle:vm_virtualbox:4.62:*:*:*:*:*:*:*
oraclevm_virtualbox4.63cpe:2.3:a:oracle:vm_virtualbox:4.63:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	virtualization	4.6	cpe:2.3:a:oracle:virtualization:4.6:::::::*
oracle	virtualization	4.7	cpe:2.3:a:oracle:virtualization:4.7:::::::*
oracle	virtualization	4.61	cpe:2.3:a:oracle:virtualization:4.61:::::::*
oracle	virtualization	4.62	cpe:2.3:a:oracle:virtualization:4.62:::::::*
oracle	virtualization	4.63	cpe:2.3:a:oracle:virtualization:4.63:::::::*
oracle	vm_virtualbox	4.6	cpe:2.3:a:oracle:vm_virtualbox:4.6:::::::*
oracle	vm_virtualbox	4.7	cpe:2.3:a:oracle:vm_virtualbox:4.7:::::::*
oracle	vm_virtualbox	4.61	cpe:2.3:a:oracle:vm_virtualbox:4.61:::::::*
oracle	vm_virtualbox	4.62	cpe:2.3:a:oracle:vm_virtualbox:4.62:::::::*
oracle	vm_virtualbox	4.63	cpe:2.3:a:oracle:vm_virtualbox:4.63:::::::*

References

osvdb.org/95319

secunia.com/advisories/54238

www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html

www.securityfocus.com/bid/61226

www.securitytracker.com/id/1028793

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.007

Percentile

79.9%

JSON

Related for CVE-2013-3779