Vulnerabilities > CVE-2013-1520 - Remote Security vulnerability in Oracle Industry Applications 4.6.0/4.6.6

047910
CVSS 5.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
oracle
NVD
Published: 2013-04-17
Updated: 2013-10-11

Summary

Unspecified vulnerability in the Oracle Clinical Remote Data Capture Option component in Oracle Industry Applications 4.6.0 and 4.6.6 allows remote authenticated users to affect confidentiality and integrity via vectors related to HTML Surround.

Vulnerable Configurations

Part Description Count
Application
Oracle
2

References