CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

4.9CVSS4AI score0.01005EPSS

CVE-2017-10010

CVE-2017-10010 affects Oracle FLEXCUBE Private Banking’s FileUploads in Oracle Financial Services Applications. A remote, low-privilege attacker with network access via HTTP can, with user interaction, corrupt data through unauthorized update/insert/delete and read access. Affected versions: 2.0....

CVE•added 2017/08/08 3:0 p.m.•61 views

CVE-2017-10011

The CVE-2017-10011 entry targets Oracle FLEXCUBE Private Banking (subcomponent: Miscellaneous) within Oracle Financial Services Applications. Affected versions are 2.0.0, 2.0.1, 2.2.0 and 12.0.1. The vulnerability allows a low-privilege user who can log on to the hosting infrastructure to comprom...

5.5CVSS5.3AI score0.00425EPSS

CVE•added 2017/08/08 3:0 p.m.•51 views

CVE-2017-10012

CVE-2017-10012 (Oracle FLEXCUBE Private Banking) affects Oracle Financial Services Applications, FLEXCUBE Private Banking; Operations subcomponent. Affected versions: 2.0.0, 2.0.1, 2.2.0, and 12.0.1. The vulnerability allows a low-privilege attacker with network access via HTTP to perform unautho...

5.5CVSS4.7AI score0.01178EPSS

CVE•added 2017/08/08 3:0 p.m.•62 views

CVE-2017-10022

Oracle FLEXCUBE Private Banking (Operations subcomponent) in Oracle Financial Services Applications is affected for versions 2.0.0, 2.0.1, 2.2.0 and 12.0.1. The vulnerability allows a low-privileged attacker who can access over HTTP to read a subset of data, indicating an unauthorized read access...

4.3CVSS3.4AI score0.01389EPSS

6.5CVSS6.1AI score0.01914EPSS

CVE-2017-10023

CVE-2017-10023 is a vulnerability in Oracle FLEXCUBE Private Banking (Oracle Financial Services Applications), subcomponent Operations. Affected versions are 2.0.0, 2.0.1, 2.2.0 and 12.0.1. The issue allows a low‑privileged attacker with network access via HTTP to compromise the Private Banking c...

CVE•added 2017/08/08 3:0 p.m.•48 views

CVE-2017-10071

CVE-2017-10071 affects Oracle FLEXCUBE Universal Banking within Oracle Financial Services Applications (subcomponents: All Modules). Affected versions include 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. The vulnerability allows an unauthenticated attacker with network acces...

4.3CVSS3.6AI score0.01651EPSS

5.5CVSS4.7AI score0.01178EPSS

CVE-2017-10072

CVE-2017-10072 affects Oracle FLEXCUBE Universal Banking in Oracle Financial Services Applications. Affected versions include 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. The vulnerability allows a low-privileged attacker with network access via HTTP to compromise data: unau...

CVE•added 2017/08/08 3:0 p.m.•51 views

CVE-2017-10084

The CVE-2017-10084 entry concerns Oracle FLEXCUBE Universal Banking, specifically the Report Generator subcomponent. Affected releases include 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. The vulnerability allows a low-privileged attacker with network access via HTTP to comp...

6.5CVSS6.1AI score0.01914EPSS

7.1CVSS6.8AI score0.0159EPSS

CVE-2017-10085

The CVE-2017-10085 entry concerns Oracle FLEXCUBE Universal Banking (Infrastructure) in Oracle Financial Services Applications. Affects versions 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, and 12.3.0. The vulnerability allows a low-privileged attacker with network access over HTTP to ...

CVE•added 2017/08/08 3:0 p.m.•50 views

CVE-2017-10103

CVE-2017-10103 describes a vulnerability in the Oracle FLEXCUBE Private Banking component (Miscellaneous subcomponent) of Oracle Financial Services Applications. Affected versions are 2.0.0, 2.0.1, 2.2.0 and 12.0.1. The issue allows a low-privileged attacker who can reach the system over HTTP via...

6.5CVSS6.1AI score0.01677EPSS

CVE•added 2017/08/08 3:0 p.m.•41 views

CVE-2017-10181

The CVE-2017-10181 entry concerns Oracle FLEXCUBE Direct Banking (Forgot Password) in Oracle Financial Services Applications. Affected version: 12.0.2 and 12.0.3. Description: a low-privileged, network-accessible attacker via HTTP can exploit this vulnerability to cause a hang/frequent crash (DOS...

6.8CVSS6.3AI score0.01104EPSS

Cvelist•added 2017/08/08 3:0 p.m.•24 views

CVE-2017-10006

Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications subcomponent: Miscellaneous. Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HT...

5.5AI score0.01645EPSS

Vulnrichment•added 2017/08/08 3:0 p.m.•11 views

CVE-2017-10008

5AI score0.01004EPSS

Exploits0References2

Vulnrichment•added 2017/08/08 3:0 p.m.•11 views

CVE-2017-10103

6.1AI score0.01677EPSS

Vulnrichment•added 2017/08/08 3:0 p.m.•8 views

CVE-2017-10083

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications subcomponent: Infrastructure. Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. Easily exploitable vulnerability allows...

6.2AI score0.0147EPSS

Vulnrichment•added 2017/08/08 3:0 p.m.•7 views

CVE-2017-10071

Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications subcomponent: All Modules. Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. Easily exploitable vulnerability allows unauthenticated...

5.2AI score0.01651EPSS

Vulnrichment•added 2017/08/08 3:0 p.m.•9 views

CVE-2017-10007

5AI score0.01418EPSS

Vulnrichment•added 2017/08/08 3:0 p.m.•9 views

CVE-2017-10010

Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications subcomponent: FileUploads. Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP...

5.4AI score0.01005EPSS