Moderate severityNVD Advisory· Published Oct 16, 2013· Updated Apr 29, 2026
CVE-2013-3827
CVE-2013-3827
Description
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; the Oracle JDeveloper component in Oracle Fusion Middleware 11.1.2.3.0, 11.1.2.4.0, and 12.1.2.0.0; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 and 12.1.1 allows remote attackers to affect confidentiality via unknown vectors related to Java Server Faces or Web Container.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.glassfish:javax.facesMaven | >= 2.0.0, < 2.1.19 | 2.1.19 |
Affected products
8cpe:2.3:a:oracle:fusion_middleware:10.3.6:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:oracle:fusion_middleware:10.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:11.1.2.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:11.1.2.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:12.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:12.1.2.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:3.1.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.htmlnvdVendor Advisory
- github.com/advisories/GHSA-q388-j7cw-ff7wghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2013-3827ghsaADVISORY
- rhn.redhat.com/errata/RHSA-2014-0029.htmlnvdWEB
- www.kb.cert.org/vuls/id/526012nvdUS Government ResourceWEB
- bugs.gentoo.org/show_bug.cgighsaWEB
- www.securityfocus.com/bid/63052nvd
- www.securitytracker.com/id/1029190nvd
News mentions
0No linked articles in our index yet.