Moderate severityNVD Advisory· Published Oct 16, 2013· Updated Jun 16, 2026
CVE-2013-3827
CVE-2013-3827
Description
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.3.0, 11.1.2.4.0, and 12.1.2.0.0; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.1 allows remote attackers to affect confidentiality via unknown vectors related to Java Server Faces or Web Container.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.glassfish:javax.facesMaven | >= 2.0.0, < 2.1.19 | 2.1.19 |
Affected products
9cpe:2.3:a:oracle:fusion_middleware:10.3.6:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:oracle:fusion_middleware:10.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:11.1.2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:11.1.2.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:12.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:12.1.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:3.1.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
8- www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.htmlnvdVendor Advisory
- github.com/advisories/GHSA-q388-j7cw-ff7wghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2013-3827ghsaADVISORY
- rhn.redhat.com/errata/RHSA-2014-0029.htmlnvdWEB
- www.kb.cert.org/vuls/id/526012nvdUS Government ResourceWEB
- bugs.gentoo.org/show_bug.cgighsaWEB
- www.securityfocus.com/bid/63052nvd
- www.securitytracker.com/id/1029190nvd
News mentions
0No linked articles in our index yet.