CVE-2013-5857

low

Published 2013-10-16 · Modified 2026-04-29

CVSS v3

—

CVSS v2

3.6

VIR risk

3.6

Description

Unspecified vulnerability in the Oracle Health Sciences InForm component in Oracle Industry Applications 4.5 SP3, 4.5 SP3a-k, 4.6 SP0, 4.6 SP0a-c, 4.6 SP1, 4.6 SP1a-c, 4.6 SP2, 4.6 SP2a-c, 5.0 SP0, 5.0 SP0a, 5.0 SP1, and 5.0 SP1a-b allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Web.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert_us@oracle.com — http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html

Application impact

Vendor	Product	Versions
oracle	industry_applications	`4.5`
oracle	industry_applications	`4.6`
oracle	industry_applications	`5.0`

References

http://osvdb.org/98491
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
http://www.securityfocus.com/bid/63096
http://osvdb.org/98491
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html
http://www.securityfocus.com/bid/63096

Verify integrity in audit chain (admin only). AS-IS.