漏洞标题
N/A
漏洞描述信息
Oracle金融服务应用程序中的Oracle金融服务资金传输定价组件(子组件:用户界面)的漏洞。受影响的支持版本是6.1.x和8.0.x。容易利用的漏洞允许通过HTTP网络访问的较低特权攻击者访问Oracle金融服务资金传输定价。成功利用此漏洞可能会导致未经授权地对关键数据或所有Oracle金融服务资金传输定价可访问数据进行创建、删除或修改,以及未经授权访问关键数据或完全访问所有Oracle金融服务资金传输定价可访问数据。CVSS 3.0基础得分为8.1(保密性和完整性影响。CVSS向量:(CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N))。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Vulnerability in the Oracle Financial Services Funds Transfer Pricing component of Oracle Financial Services Applications (subcomponent: User Interface). Supported versions that are affected are 6.1.x and 8.0.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Financial Services Funds Transfer Pricing. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Financial Services Funds Transfer Pricing accessible data as well as unauthorized access to critical data or complete access to all Oracle Financial Services Funds Transfer Pricing accessible data. CVSS 3.0 Base Score 8.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Oracle Financial Services Applications Oracle Financial Services Funds Transfer Pricing组件安全漏洞
漏洞描述信息
Oracle Financial Services Applications是美国甲骨文(Oracle)公司的一套集核心银行、网上银行和财产管理于一身的金融服务软件。Oracle Financial Services Funds Transfer Pricing是其中的一个金融服务资金转移定价组件。 Oracle Financial Services Applications中的Oracle Financial Services Funds Transfer Pricing组件6.1.x版本和8.0.x版
CVSS信息
N/A
漏洞类别
授权问题