CVE-2019-2846 in FLEXCUBE Investor Servicinginformazioni

Riassunto

di MITRE

Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 12.0.1, 12.0.3, 12.0.4, 12.1.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Investor Servicing. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle FLEXCUBE Investor Servicing accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Prenotare

14/12/2018

Moderazione

accettato

CPE

pronto

EPSS

0.01302

KEV

no

Attività

molto basso

Settore

Finance

Fonti

Do you know our Splunk app?

Download it now for free!