Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-0397Oracle E-business Suite vulnerability

4 documents4 sources
Severity
6.4MEDIUMNVD
EPSS
29.9%
top 3.35%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Oracle E-business Suite
Timeline
PublishedJan 17
Latest updateMay 5

Description

Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 11.5.10.2, 12.0.6, and 12.1.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Diagnostics.

CVSS vector

AV:N/AC:L/C:P/I:P/A:NExploitability: 10.0 | Impact: 4.9

Affected Packages1 packages

NVDoracle/e-business_suite11.5.10.2, 12.0.6, 12.1.3+2

🔴Vulnerability Details

2
GHSA
GHSA-c4gh-f67w-3qcc: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 112022-05-05
CVEList
CVE-2013-0397: Unspecified vulnerability in the Oracle Applications Framework component in Oracle E-Business Suite 112013-01-17

💥Exploits & PoCs

1
Exploit-DB
Oracle Application Framework - Diagnostic Mode Bypass2013-01-16
CVE-2013-0397 — Oracle E-business Suite vulnerability | cvebase