CVE-2013-3838

Unspecified vulnerability in Oracle SPARC Enterprise T & M Series Servers running Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5 allows local users to affect availability via unknown vectors related to Sun System Firmware/Hypervisor.

CVSS v2.0 4.0 MEDIUM

4.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:H/Au:N/C:N/I:N/A:C

Exploitability : 1.9 / Impact : 6.9

Access Vector LOCAL

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:oracle:sun_system_firmware::::::::
	cpe:2.3:o:oracle:sun_system_firmware::::::::
	cpe:2.3:o:oracle:sun_system_firmware::::::::
	cpe:2.3:o:oracle:sun_system_firmware::::::::
	cpe:2.3:o:oracle:sun_system_firmware::::::::

OR	cpe:2.3:h:oracle:sparc_enterprise_m8000_server:-:::::::*
	cpe:2.3:h:oracle:sparc_enterprise_m9000_server:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-1:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-1b:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-2:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-3:-:::::::*
	cpe:2.3:h:oracle:sparc_t3-4:-:::::::*
	cpe:2.3:h:oracle:sparc_t4-1:-:::::::*
	cpe:2.3:h:oracle:sparc_t4-1b:-:::::::*
	cpe:2.3:h:oracle:sparc_t4-2:-:::::::*
	cpe:2.3:h:oracle:sparc_t4-4:-:::::::*

History

No history.

Information

Published : 2013-10-16 15:55

Updated : 2023-12-10 11:16

NVD link : CVE-2013-3838

Mitre link : CVE-2013-3838

CVE.ORG link : CVE-2013-3838

JSON object : View

Products Affected

oracle

sparc_enterprise_m9000_server
sparc_t3-3
sparc_t3-1
sparc_t4-1
sparc_t4-1b
sparc_t4-2
sparc_t3-1b
sparc_t3-2
sparc_t4-4
sparc_enterprise_m8000_server
sparc_t3-4
sun_system_firmware

CWE

NVD-CWE-noinfo

{"id": "CVE-2013-3838", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "LOCAL", "vectorString": "AV:L/AC:H/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 1.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-10-16T15:55:33.990", "references": [{"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Oracle SPARC Enterprise T & M Series Servers running Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5 allows local users to affect availability via unknown vectors related to Sun System Firmware/Hypervisor."}, {"lang": "es", "value": "Vulnerabilidad no especificada en Oracle SPARC Enterprise T & Servers Serie M con Sun System Firmware 6.7.13 anterior a SPARC T1, 7.4.6.c para SPARC T2, 8.3.0.b para SPARC T3 y T4, 9.0.0.d para SPARC T5 y 9.0.1.e para SPARC M5 permite a usuarios locales afectar a la disponibilidad a trav\u00e9s de vectores desconocidos relacionados con Sun System Firmware/Hypervisor."}], "lastModified": "2013-10-16T17:43:12.787", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:oracle:sun_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFC9F1F7-FEF5-4414-84A3-3E1F2A8F4A18", "versionEndIncluding": "6.7.12"}, {"criteria": "cpe:2.3:o:oracle:sun_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "064CEF82-1B1F-4618-85B8-4C2539DD6D53", "versionEndIncluding": "7.4.6"}, {"criteria": "cpe:2.3:o:oracle:sun_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2C1717F2-CB0C-43CA-BE77-C1ECA99C1D63", "versionEndIncluding": "8.3.0"}, {"criteria": "cpe:2.3:o:oracle:sun_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F13B7C58-632E-4E03-A975-1360C34C1924", "versionEndIncluding": "9.0.0"}, {"criteria": "cpe:2.3:o:oracle:sun_system_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AB3FF26C-F1C8-4A5F-99A8-6EEB3C266F15", "versionEndIncluding": "9.0.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:oracle:sparc_enterprise_m8000_server:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F528DC3-ADBB-4612-A8C0-A4B806E5BB44"}, {"criteria": "cpe:2.3:h:oracle:sparc_enterprise_m9000_server:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0050034-1E95-4724-B359-87C56D0198C4"}, {"criteria": "cpe:2.3:h:oracle:sparc_t3-1:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92144B15-6A30-4451-9CB8-3E94E2550F4D"}, {"criteria": "cpe:2.3:h:oracle:sparc_t3-1b:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF19DEF8-E1BC-48BD-9852-071F57D31B07"}, {"criteria": "cpe:2.3:h:oracle:sparc_t3-2:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E21A92F3-00AF-4650-8219-812C71EE3B2C"}, {"criteria": "cpe:2.3:h:oracle:sparc_t3-3:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0290C800-9FFE-44C9-BA63-3CCEB56250B7"}, {"criteria": "cpe:2.3:h:oracle:sparc_t3-4:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4164246-50E7-46E5-BCB9-1CE4913361E4"}, {"criteria": "cpe:2.3:h:oracle:sparc_t4-1:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0058692-28E1-4948-AF49-DE8D20CCB5DB"}, {"criteria": "cpe:2.3:h:oracle:sparc_t4-1b:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BD7449E-0FF8-42ED-AB4B-D3BEE7B07E31"}, {"criteria": "cpe:2.3:h:oracle:sparc_t4-2:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD9F7D61-E06B-4F1D-9145-4B59868DFED4"}, {"criteria": "cpe:2.3:h:oracle:sparc_t4-4:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F61C1C4-90D0-4D88-8282-741475C6A9DB"}], "operator": "OR"}], "operator": "AND"}], "evaluatorComment": "Per: http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html\n\n\"CVE-2013-3838 applies to Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5.\"+", "sourceIdentifier": "secalert_us@oracle.com"}