CVE-2013-5906

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 15-01-2014 05:08

Last modified: - 13-05-2022 04:57

Total changes: - 2

Description

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install, a different vulnerability than CVE-2013-5905.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:H/Au:N/C:P/I:P/A:P

High

Attack complexity

Network

Attack vector

Low

Availability

Low

Confidentiality

Low

Integrity

Privileges required

Scope

User interaction

5.1

Base score

4.9

6.4

Exploitability score

Impact score

Verification logic

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_desktop_supplementary AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_supplementary_aus AND version=6.5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_hpc_node_supplementary AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_supplementary_eus AND version=6.5.z

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_supplementary AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_workstation_supplementary AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_supplementary AND version=5.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_desktop_supplementary AND version=5.0

vendor=oracle AND product=jre AND version=1.7.0 AND update=update45

vendor=oracle AND product=jdk AND version=1.6.0 AND update=update65

vendor=oracle AND product=jre AND version=1.6.0 AND update=update65

AND

vendor=hp AND product=jdk AND versionEndIncluding=7.0.08

vendor=hp AND product=jre AND versionEndIncluding=7.0.08

vendor=hp AND product=hp-ux AND version=b.11.31

vendor=hp AND product=hp-ux AND version=b.11.23

vendor=oracle AND product=jdk AND version=1.5.0 AND update=update55

vendor=oracle AND product=jre AND version=1.5.0 AND update=update55

Reference

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
64758-Third Party Advisory, VDB Entry
1029608-Third Party Advisory, VDB Entry
64903-Third Party Advisory, VDB Entry
56485-Permissions Required
56535-Permissions Required
102010-Broken Link
RHSA-2014:0030-Third Party Advisory
SSRT101454-Third Party Advisory
SSRT101455-Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777
oracle-cpujan2014-cve20135906(90342)-
RHSA-2014:0414-

Keywords

CVE-2013-5906

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2013-5906

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures