CVE-2016-8317 in FLEXCUBE Investor Servicinginformation

Résumé

par MITRE

Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Unit Trust). Supported versions that are affected are 12.0.1, 12.0.2,12.0.4,12.1.0 and 12.3.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Investor Servicing. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle FLEXCUBE Investor Servicing accessible data. CVSS v3.0 Base Score 5.3 (Integrity impacts).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

26/09/2016

Divulgation

27/01/2017

Modérer

accepté

Entrée

VDB-95649

CPE

prêt

CWE

CWE-284 (confirmé)

CVSS

5.3 (NVD)

EPSS

0.00267

KEV

non

Activités

très faible

Secteur

Finance

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8317
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8317
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8317/

◂ Précédent Aperçu Suivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!