How severe is CVE-2019-2713?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Oracle Commerce_merchandising

CVE-2019-2713

Vulnerability in the Oracle Commerce Merchandising component of Oracle Commerce (subcomponent: Asset Manager). The supported version that is affected is 11.2.0.3. Easily exploitable vulnerability allows unauthenticated attacker with networ…

EPSS: 0.010 (58.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N.

Affected products

Oracle Commerce_merchandising — versions 11.2.0.3
Oracle Corporation Commerce Merchandising — versions 11.2.0.3

References

secalert_us@oracle.com (Patch, x_refsource_MISC, Vendor Advisory)

Frequently asked questions

What is CVE-2019-2713?: CVE-2019-2713 is a medium-severity vulnerability in Oracle Commerce_merchandising. CVSS score: 6.5/10. Published 2019-04-23.
How severe is CVE-2019-2713?: Medium severity. CVSS v3 base score is 6.5 out of 10.