CVE-2013-3754

Unspecified vulnerability in the Solaris Cluster component in Oracle and Sun Systems Products Suite 3.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to HA for TimesTen.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/95306
http://secunia.com/advisories/54239
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	Vendor Advisory
http://www.securityfocus.com/bid/61259
https://exchange.xforce.ibmcloud.com/vulnerabilities/85693
http://osvdb.org/95306
http://secunia.com/advisories/54239
http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html	Vendor Advisory
http://www.securityfocus.com/bid/61259
https://exchange.xforce.ibmcloud.com/vulnerabilities/85693

Configurations

Configuration 1 (hide)

cpe:2.3:a:oracle:oracle_and_sun_systems_product_suite:3.3:*:*:*:*:*:*:*

History

21 Nov 2024, 01:54

Type	Values Removed	Values Added
References	~~() http://osvdb.org/95306 -~~	() http://osvdb.org/95306 -
References	~~() http://secunia.com/advisories/54239 -~~	() http://secunia.com/advisories/54239 -
References	~~() http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - Vendor Advisory~~	() http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/61259 -~~	() http://www.securityfocus.com/bid/61259 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/85693 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/85693 -

Information

Published : 2013-07-17 13:41

Updated : 2025-04-11 00:51

NVD link : CVE-2013-3754

Mitre link : CVE-2013-3754

CVE.ORG link : CVE-2013-3754

JSON object : View

Products Affected

oracle

oracle_and_sun_systems_product_suite

CWE

NVD-CWE-noinfo

{"id": "CVE-2013-3754", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-07-17T13:41:16.617", "references": [{"url": "http://osvdb.org/95306", "source": "secalert_us@oracle.com"}, {"url": "http://secunia.com/advisories/54239", "source": "secalert_us@oracle.com"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}, {"url": "http://www.securityfocus.com/bid/61259", "source": "secalert_us@oracle.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85693", "source": "secalert_us@oracle.com"}, {"url": "http://osvdb.org/95306", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/54239", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/61259", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/85693", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the Solaris Cluster component in Oracle and Sun Systems Products Suite 3.3 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to HA for TimesTen."}, {"lang": "es", "value": "Vulnerabilidad no especificada en el componente Solaris Cluster en Oracle and Sun Systems Products Suite v3.3 permite a usuarios locales afectar la confidencialidad, integridad y disponibilidad mediante vectores relacionados con HA para TimesTen."}], "lastModified": "2025-04-11T00:51:21.963", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:oracle_and_sun_systems_product_suite:3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D09F8B83-57DE-40A7-9C16-67F15E359452"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}