漏洞标题
N/A
漏洞描述信息
"Oracle金融服务应用程序中的Oracle FlexCUBE企业限制和资产管理组件(子组件:基础设施)的漏洞。受影响的版本是12.0.0和12.1.0。 easily "Exploitable" 漏洞允许通过HTTP网络访问的未授权攻击者 compromise Oracle FlexCUBE 企业限制和资产管理。成功攻击需要非攻击者的人之间的交互,虽然漏洞在Oracle FlexCUBE 企业限制和资产管理中,但攻击可能显著影响其他产品。这个漏洞的成功攻击可能导致未经授权的对Oracle FlexCUBE 企业限制和资产管理可访问数据的部分更新、插入或删除访问,以及未经授权的读取访问部分可访问数据的部分。CVSS 3.0基础得分6.1( confidentiality and integrity impacts)。CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)。"
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 12.0.0 and 12.1.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Enterprise Limits and Collateral Management. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle FLEXCUBE Enterprise Limits and Collateral Management, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle FLEXCUBE Enterprise Limits and Collateral Management accessible data as well as unauthorized read access to a subset of Oracle FLEXCUBE Enterprise Limits and Collateral Management accessible data. CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Oracle Financial Services Applications Oracle FLEXCUBE Enterprise Limits and Collateral Management 安全漏洞
漏洞描述信息
Oracle Financial Services Applications是美国甲骨文(Oracle)公司的一套集核心银行、网上银行和财产管理于一身的金融服务软件。Oracle FLEXCUBE Enterprise Limits and Collateral Management是其中的一个用于管理整个企业的产品在线实时曝光的组件。 Oracle Financial Services Applications中的Oracle FLEXCUBE Enterprise Limits and Collate
CVSS信息
N/A
漏洞类别
授权问题