CVE-2013-5856
low
CVSS v3
—
CVSS v2
3.6
VIR risk
3.6
Description
Unspecified vulnerability in the Oracle Health Sciences InForm component in Oracle Industry Applications 4.5 SP3, 4.5 SP3a-k, 4.6 SP0, 4.6 SP0a-c, 4.6 SP1, 4.6 SP1a-c, 4.6 SP2, 4.6 SP2a-c, 5.0 SP0, 5.0 SP0a, 5.0 SP1, 5.0 SP1a-b, 5.5 SP0, 5.5 SP0b, 5.5.1, and 6.0.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Web.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| oracle | industry_applications | 4.5 | |
| oracle | industry_applications | 4.6 | |
| oracle | industry_applications | 5.0 | |
| oracle | industry_applications | 5.5 | |
| oracle | industry_applications | 5.5.1 | |
| oracle | industry_applications | 6.0.0 | |
References
Verify integrity in audit chain (admin only). AS-IS.