20 matches found
EUVD-2019-1053
Malware in sbrugna...
EUVD-2019-1156
Malware in sbrugna...
EUVD-2022-26697
Malicious code in bioql PyPI...
CVE-2025-1929 SQLi in RiskTurk's Treasury Management Software
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Risk Yazılım Teknolojileri Ltd. Şti. Reel Sektör Hazine ve Risk Yönetimi Yazılımı allows SQL Injection, CAPEC - 7 - Blind SQL Injection. This issue affects Reel Sektör Hazine ve Risk Yönetimi...
CVE-2025-1929 SQLi in RiskTurk's Treasury Management Software
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Risk Yazılım Teknolojileri Ltd. Şti. Reel Sektör Hazine ve Risk Yönetimi Yazılımı allows SQL Injection, CAPEC - 7 - Blind SQL Injection. This issue affects Reel Sektör Hazine ve Risk Yönetimi...
Security update for amber-cli
This update for amber-cli fixes the following issues: Update to version 1.13.1+git20250329.c2e3bb8: CVE-2025-30204: Fixed jwt-go excessive memory allocation during header parsing bsc1240511 jwt version upgrade 174 Update policy size limit to 20k 173 Update tenant user model with latest changes 17...
CVE-2022-21473
Vulnerability in the Oracle Banking Treasury Management product of Oracle Financial Services Applications component: Infrastructure. The supported version that is affected is 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
The vulnerability of the Infrastructure component of the Oracle Banking Treasury Management software allows a perpetrator to gain access to protected information, modify file access rights, or cause partial service interruption.
The vulnerability of the Infrastructure component of the Oracle Banking Treasury Management software exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to protected information, modify file access rights, or...
Vulnerabilities fixed in Oracle Financial Services Applications
Oracle has fixed vulnerabilities in the following Financial Services applications: - Oracle Banking Deposits and Lines of Credit Servicing - Oracle Banking Enterprise Default Management - Oracle Banking Loans Servicing - Oracle Banking Party Management - Oracle Banking Payments - Oracle Banking...
CVE-2022-21473
Vulnerability in the Oracle Banking Treasury Management product of Oracle Financial Services Applications component: Infrastructure. The supported version that is affected is 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
Design/Logic Flaw
Vulnerability in the Oracle Banking Treasury Management product of Oracle Financial Services Applications component: Infrastructure. The supported version that is affected is 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2022-21473
Oracle Banking Treasury Management (Oracle Financial Services Applications) is affected by CVE-2022-21473 in the Infrastructure component for version 14.5. The vulnerability can be exploited by a low-privilege, network-accessible attacker over HTTP and requires user interaction; successful exploi...
CVE-2022-21473
Vulnerability in the Oracle Banking Treasury Management product of Oracle Financial Services Applications component: Infrastructure. The supported version that is affected is 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
Oracle Financial Services Applications 输入验证错误漏洞
Oracle Financial Services Applications is a suite of financial services software from Oracle USA. The products include core banking, online banking, and estate management.FLEXCUBE Universal Banking is one of the Internet and mobile banking solution components. A security vulnerability exists in...
CVE-2020-6204
The selection query in SAP Treasury and Risk Management Transaction Management EA-FINSERV?versions 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104 returns more records than it should be when selecting and displaying the contract number, leading to Missing...
The vulnerability of the transaction management function of the SAP Treasury and Risk Management software allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the transaction management function in SAP Treasury and Risk Management involves deficiencies in the authorization mechanism. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected informati...
The vulnerability of the SAP Treasury and Risk Management software regarding access control deficiencies allows attackers to enhance their privileges.
The vulnerability of the SAP Treasury and Risk Management software for managing financial instruments and risks is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...
CVE-2019-0383
CVE-2019-0383 describes an authorization bypass in SAP Treasury and Risk Management, where authenticated users can escalate privileges due to missing authorization checks. Connected sources specify affected components and versions: SAP S4CORE 1.01–1.04 and EA-FINSERV 6.0, 6.03, 6.04, 6.05, 6.06, ...
Unspecified vulnerability in SAP Treasury and Risk Management
SAP Treasury and Risk Management TRM is a finance and risk management solution from SAP. The product is primarily used to analyze and optimize business processes in the area of corporate finance. A security vulnerability exists in SAP TRM, which stems from a lack of authorization checks in the...
CVE-2019-0280
SAP Treasury and Risk Management EA-FINSERV 6.0, 6.03, 6.04, 6.05, 6.06, 6.16, 6.17, 6.18 and 8.0; S4CORE 1.01, 1.02 and 1.03, does not perform necessary authorization checks for authorization objects TDEALDP and TDEALPD , resulting in escalation of privileges...