Lucene search
+L

72 matches found

bdu_fstec
bdu_fstec
added 2024/10/28 12:0 a.m.7 views

The vulnerability of the Infrastructure component of the Oracle Banking Liquidity Management management platform allows a hacker to gain unauthorized access to read, create, modify, and delete data, or to cause a service failure.

The vulnerability of Oracle Banking Liquidity Management’s infrastructure component relates to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to read, create, modify, and delete data, or cause...

6.1CVSS7.6AI score0.00286EPSS
Exploits0References4Affected Software1
nvd
nvd
added 2024/05/27 1:15 p.m.28 views

CVE-2024-5407

A vulnerability in RhinOS 3.0-1190 could allow PHP code injection through the "search" parameter in /portal/search.htm. This vulnerability could allow a remote attacker to perform a reverse shell on the remote system, compromising the entire infrastructure...

10CVSS9.7AI score0.00604EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/01/16 12:0 a.m.11 views

PT-2024-1170 · Oracle · Oracle Financial Services Analytical Applications Infrastructure

Name of the Vulnerable Software and Affected Versions: Oracle Financial Services Analytical Applications Infrastructure versions 8.0.7 through 8.1.2 Description: The issue is related to insufficient input validation in the Infrastructure component of Oracle Financial Services Analytical...

7.4CVSS6.7AI score0.00321EPSS
Exploits0References7
bdu_fstec
bdu_fstec
added 2023/10/25 12:0 a.m.6 views

The vulnerability of the Infrastructure component of the Oracle FLEXCUBE Universal Banking system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Infrastructure component of the Oracle FLEXCUBE Universal Banking system is related to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

5.5CVSS5.9AI score0.00321EPSS
Exploits0References3Affected Software1
qualysblog
qualysblog
added 2023/09/18 3:17 p.m.15 views

Qualys Is the Outperformer in the New GigaOm Radar Report for Continuous Vulnerability Management

GigaOm has unveiled its third-annual Radar for Continuous Vulnerability Management featuring Qualys. In this Report, GigaOm provides a detailed analysis of the value and progression of vulnerability management VM capabilities to help organizations build the best security and vulnerability...

7AI score
Exploits0
nessus
nessus
added 2022/10/21 12:0 a.m.34 views

Oracle Coherence Unauthorized Access (Oct 2022 CPU)

The 12.2.1.4.0 and 14.1.1.0.0 versions of Coherence installed on the remote host are affected by an unauthorized access vulnerability as referenced in the Oct 2022 CPU advisory. This easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle...

5.5CVSS7.2AI score0.01044EPSS
Exploits1References3
osv
osv
added 2022/10/18 9:15 p.m.4 views

CVE-2022-21591

Vulnerability in the Oracle Transportation Management product of Oracle Supply Chain component: UI Infrastructure. Supported versions that are affected are 6.4.3 and 6.5.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

5.4CVSS5.8AI score0.00513EPSS
Exploits0References1
debiancve
debiancve
added 2022/10/18 12:0 a.m.41 views

CVE-2022-39403

Removed by vendor...

3.9CVSS6.2AI score0.0042EPSS
Exploits0
bdu_fstec
bdu_fstec
added 2022/09/07 12:0 a.m.7 views

The vulnerability of the Infrastructure component of the Oracle Banking Trade Finance software allows a perpetrator to gain read access to data and modify it.

The vulnerability of the Infrastructure component of the Oracle Banking Trade Finance software exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify, add, or delete data using the HTTP protoco...

6.6CVSS6.9AI score0.00473EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/09/07 12:0 a.m.9 views

The vulnerability of the Infrastructure component of the Oracle Banking Trade Finance software allows a perpetrator to gain unauthorized access to read, modify, or add data, or to cause a service failure.

The vulnerability of the Infrastructure component of the Oracle Banking Trade Finance software exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to read, modify, or add data, or cause a service...

6.1CVSS6.8AI score0.00459EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/08/31 12:0 a.m.8 views

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model, allowing a perpetrator to gain access to read, modify, add, or delete data.

The vulnerability of the Infrastructure sub-component of the Oracle FLEXCUBE Universal Banking banking analytics system’s simulation model exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker, operating remotely, to gain access to read, modify...

6.6CVSS6.9AI score0.00555EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/06/27 12:0 a.m.17 views

The vulnerability of the Infrastructure component of the Oracle FLEXCUBE Universal Banking system allows a perpetrator to gain access to data reading or cause a partial service disruption.

The vulnerability of the Infrastructure component of the Oracle FLEXCUBE Universal Banking system exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain read access to data or cause partial service interruption...

6.1CVSS6.8AI score0.00609EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/06/27 12:0 a.m.12 views

The vulnerability of the Infrastructure component of the Oracle Banking Trade Finance software allows a perpetrator to create, delete, or alter access to critical data, gain read-only access to data, or cause partial service disruption.

The vulnerability of Oracle Banking Trade Finance’s Infrastructure component is related to errors in the code. Exploiting this vulnerability allows a malicious actor to create, delete, or alter access to critical data, gain read-only access to data, or cause partial service interruptions through...

6.1CVSS6.8AI score0.00609EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2022/06/27 12:0 a.m.11 views

The vulnerability of the Infrastructure component of the Oracle Banking Treasury Management software allows a perpetrator to gain access to protected information, modify file access rights, or cause partial service interruption.

The vulnerability of the Infrastructure component of the Oracle Banking Treasury Management software exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to protected information, modify file access rights, or...

6.1CVSS6.8AI score0.00609EPSS
Exploits0References3Affected Software1
threatpost
threatpost
added 2021/06/29 7:49 p.m.33 views

Users Clueless About Cybersecurity Risks: Study

Organizations are facing yet another unprecedented threat to their cybersecurity now that employees are headed back into offices with their personal devices, lax security hygiene and no clue about some of the most catastrophic attacks in history, such as the Colonial Pipeline shutdown. A new surv...

7.4AI score
Exploits0References8
cisa
cisa
added 2021/06/09 12:0 a.m.18 views

CISA Addresses the Rise in Ransomware Targeting Operational Technology Assets

CISA has published the Rising Ransomware Threat to OT Assets fact sheet in response to the recent increase in ransomware attacks targeting operational technology OT assets and control systems. The guidance: provides steps to prepare for, mitigate against, and respond to attacks; details how the...

6.9AI score
Exploits0References3
nvd
nvd
added 2021/01/20 3:15 p.m.13 views

CVE-2021-2086

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is Prior to 6.1.18. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

6CVSS5.7AI score0.00452EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2020/08/12 12:0 a.m.6 views

The vulnerability of the Infrastructure component of the Oracle Financial Services Analytical Applications Infrastructure software allows a perpetrator to gain access to modify, add, or delete data.

The vulnerability of the Infrastructure component of the Oracle Financial Services Analytical Applications Infrastructure software relates to insufficient validation of input data. Exploiting this vulnerability can allow an attacker operating remotely to gain access to the ability to modify, add,...

6.8CVSS6.9AI score0.01021EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2020/08/12 12:0 a.m.5 views

The vulnerability of the Infrastructure component of Oracle Financial Services Analytical Applications Infrastructure allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of Oracle Financial Services Analytical Applications Infrastructure’s component is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow an attacker operating remotely to modify, add, or delete data, or to gain...

6.1CVSS6.9AI score0.00919EPSS
Exploits0References2Affected Software1
bdu_fstec
bdu_fstec
added 2020/08/12 12:0 a.m.9 views

The vulnerability of the Infrastructure component of the Oracle Financial Services Analytical Applications Infrastructure software allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Infrastructure component of the Oracle Financial Services Analytical Applications Infrastructure software relates to insufficient validation of input data. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected...

5.3CVSS6.6AI score0.01432EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder