{"api_version":"1","generated_at":"2026-04-23T05:04:51+00:00","cve":"CVE-2013-3791","urls":{"html":"https://cve.report/CVE-2013-3791","api":"https://cve.report/api/cve/CVE-2013-3791.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2013-3791","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2013-3791"},"summary":{"title":"CVE-2013-3791","description":"Unspecified vulnerability in Enterprise Manager (EM) Base Platform 10.2.0.5 and EM DB Control 11.1.0.7 in Oracle Enterprise Manager Grid Control allows remote attackers to affect integrity via unknown vectors related to User Interface Framework.","state":"PUBLIC","assigner":"secalert_us@oracle.com","published_at":"2013-07-17 13:41:00","updated_at":"2017-08-29 01:33:00"},"problem_types":["NVD-CWE-noinfo"],"metrics":[],"references":[{"url":"http://www.securitytracker.com/id/1028795","name":"1028795","refsource":"SECTRACK","tags":[],"title":"Oracle Enterprise Manager Bugs Let Remote Users Partially Modify Data - SecurityTracker","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/61213","name":"61213","refsource":"BID","tags":[],"title":"Oracle Enterprise Manager Base Platform CVE-2013-3791 Remote Security Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html","name":"http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html","refsource":"CONFIRM","tags":["Vendor Advisory"],"title":"Oracle Critical Patch Update - July 2013","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://jvn.jp/en/jp/JVN26103805/index.html","name":"JVN#26103805","refsource":"JVN","tags":[],"title":"JVN#26103805: Oracle Enterprise Manager vulnerable to cross-site scripting","mime":"text/xml","httpstatus":"200","archivestatus":"200"},{"url":"http://osvdb.org/95279","name":"95279","refsource":"OSVDB","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/85666","name":"oracle-cpujuly2013-cve20133791(85666)","refsource":"XF","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://jvndb.jvn.jp/jvndb/JVNDB-2013-003391","name":"JVNDB-2013-003391","refsource":"JVNDB","tags":[],"title":"","mime":"text/html","httpstatus":"200","archivestatus":"404"},{"url":"https://www.cve.org/CVERecord?id=CVE-2013-3791","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2013-3791","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2013","cve_id":"3791","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"oracle","cpe5":"enterprise_manager","cpe6":"10.2.0.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3791","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"oracle","cpe5":"enterprise_manager","cpe6":"10.2.0.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3791","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"oracle","cpe5":"enterprise_manager_database_control","cpe6":"11.1.0.7","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3791","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"oracle","cpe5":"enterprise_manager_database_control","cpe6":"11.1.0.7","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3791","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"oracle","cpe5":"enterprise_manager_grid_control","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2013","cve_id":"3791","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"oracle","cpe5":"enterprise_manager_grid_control","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"secalert_us@oracle.com","ID":"CVE-2013-3791","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Unspecified vulnerability in Enterprise Manager (EM) Base Platform 10.2.0.5 and EM DB Control 11.1.0.7 in Oracle Enterprise Manager Grid Control allows remote attackers to affect integrity via unknown vectors related to User Interface Framework."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"JVN#26103805","refsource":"JVN","url":"http://jvn.jp/en/jp/JVN26103805/index.html"},{"name":"JVNDB-2013-003391","refsource":"JVNDB","url":"http://jvndb.jvn.jp/jvndb/JVNDB-2013-003391"},{"name":"1028795","refsource":"SECTRACK","url":"http://www.securitytracker.com/id/1028795"},{"name":"http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html","refsource":"CONFIRM","url":"http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html"},{"name":"61213","refsource":"BID","url":"http://www.securityfocus.com/bid/61213"},{"name":"oracle-cpujuly2013-cve20133791(85666)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/85666"},{"name":"95279","refsource":"OSVDB","url":"http://osvdb.org/95279"}]}},"nvd":{"publishedDate":"2013-07-17 13:41:00","lastModifiedDate":"2017-08-29 01:33:00","problem_types":["NVD-CWE-noinfo"],"metrics":{"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE","baseScore":4.3},"severity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:oracle:enterprise_manager:10.2.0.5:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:oracle:enterprise_manager_database_control:11.1.0.7:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:oracle:enterprise_manager_grid_control:*:*:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2013","CveId":"3791","Ordinal":"63450","Title":"CVE-2013-3791","CVE":"CVE-2013-3791","Year":"2013"},"notes":[{"CveYear":"2013","CveId":"3791","Ordinal":"1","NoteData":"Unspecified vulnerability in Enterprise Manager (EM) Base Platform 10.2.0.5 and EM DB Control 11.1.0.7 in Oracle Enterprise Manager Grid Control allows remote attackers to affect integrity via unknown vectors related to User Interface Framework.","Type":"Description","Title":null},{"CveYear":"2013","CveId":"3791","Ordinal":"2","NoteData":"2013-07-17","Type":"Other","Title":"Published"},{"CveYear":"2013","CveId":"3791","Ordinal":"3","NoteData":"2017-08-28","Type":"Other","Title":"Modified"}]}}}