CVE-2013-2387

2013-04-1717:55:06

[email protected]

web.nvd.nist.gov

cve-2013-2387

oracle

flexcube

direct banking

vulnerability

confidentiality

integrity

nvd

3.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:S/C:P/I:P/A:N

5.2 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

34.7%

JSON

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 2.8.0 through 4.1.0 allows remote authenticated users to affect confidentiality and integrity via vectors related to BASE.

Affected configurations

NVD

Node

oraclefinancial_services_softwareMatch2.8.0

oraclefinancial_services_softwareMatch3.1.0

oraclefinancial_services_softwareMatch4.1.0

CPENameOperatorVersion
oracle:financial_services_softwareoracle financial services softwareeq2.8.0
oracle:financial_services_softwareoracle financial services softwareeq3.1.0
oracle:financial_services_softwareoracle financial services softwareeq4.1.0

CPE	Name	Operator	Version
oracle:financial_services_software	oracle financial services software	eq	2.8.0
oracle:financial_services_software	oracle financial services software	eq	3.1.0
oracle:financial_services_software	oracle financial services software	eq	4.1.0