CVE-2013-4316 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 91%

Vendor	Product	Version
apache	struts	2.0.0
apache	struts	2.0.1
apache	struts	2.0.2
apache	struts	2.0.3
apache	struts	2.0.4
apache	struts	2.0.5
apache	struts	2.0.6
apache	struts	2.0.7
apache	struts	2.0.8
apache	struts	2.0.9
apache	struts	2.0.10
apache	struts	2.0.11
apache	struts	2.0.11.1
apache	struts	2.0.11.2
apache	struts	2.0.12
apache	struts	2.0.13
apache	struts	2.0.14
apache	struts	2.1.0
apache	struts	2.1.1
apache	struts	2.1.2
apache	struts	2.1.3
apache	struts	2.1.4
apache	struts	2.1.5
apache	struts	2.1.6
apache	struts	2.1.8
apache	struts	2.1.8.1
apache	struts	2.2.1
apache	struts	2.2.1.1
apache	struts	2.2.3
apache	struts	2.2.3.1
apache	struts	2.3.1
apache	struts	2.3.1.1
apache	struts	2.3.1.2
apache	struts	2.3.3
apache	struts	2.3.4
apache	struts	2.3.4.1
apache	struts	2.3.7
apache	struts	2.3.8
apache	struts	2.3.12
apache	struts	2.3.14
apache	struts	2.3.14.1
apache	struts	2.3.14.2
apache	struts	2.3.14.3
apache	struts	2.3.15
apache	struts	2.3.15.1
oracle	flexcube_private_banking	1.7
oracle	flexcube_private_banking	2.0
oracle	flexcube_private_banking	2.0.1
oracle	flexcube_private_banking	2.2.0.1
oracle	flexcube_private_banking	3.0
oracle	flexcube_private_banking	12.0.1
oracle	flexcube_private_banking	12.0.2
oracle	mysql_enterprise_monitor	𝑥 ≤ 2.3.14
oracle	mysql_enterprise_monitor	𝑥 ≤ 3.0.4
oracle	webcenter_sites	11.1.1.6.1
oracle	webcenter_sites	11.1.1.8.0

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

libstruts1.2-java

raring	not-affected
quantal	not-affected
precise	not-affected
lucid	not-affected

Common Weakness Enumeration

CWE-16 -

References

http://archives.neohapsis.com/archives/bugtraq/2013-09/0107.html

http://struts.apache.org/release/2.3.x/docs/s2-019.html

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

http://www.securityfocus.com/bid/64758

http://www.securitytracker.com/id/1029078

http://archives.neohapsis.com/archives/bugtraq/2013-09/0107.html

http://struts.apache.org/release/2.3.x/docs/s2-019.html

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

http://www.securityfocus.com/bid/64758

http://www.securitytracker.com/id/1029078