Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-3763Oracle Fusion Middleware vulnerability

8 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
72.2%
top 1.24%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Oracle Fusion Middleware
Timeline
PublishedJul 17
Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 7.4.0 and 7.5.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2013-3764.

CVSS vector

AV:N/AC:L/C:P/I:P/A:NExploitability: 8.0 | Impact: 4.9

Affected Packages1 packages

NVDoracle/fusion_middleware7.4.0, 7.5.1.1+1

🔴Vulnerability Details

4
GHSA
GHSA-wm53-2q9h-xhmq: Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 72022-05-17
GHSA
GHSA-3p5h-w9pp-xh48: Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 72022-05-17
CVEList
CVE-2013-3763: Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 72013-07-17
CVEList
CVE-2013-3764: Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 72013-07-17

💥Exploits & PoCs

2
Exploit-DB
Oracle Endeca Server - Remote Command Execution (Metasploit)2013-08-26
Metasploit
Oracle Endeca Server Remote Command Execution
CVE-2013-3763 — Oracle Fusion Middleware vulnerability | cvebase