Banking Trade Finance Security Vulnerabilities and Issues — Banking Trade Finance CVE List

Lucene search

OracleBanking Trade Finance

21 matches found

CVE•added 2021/12/18 12:15 p.m.•987 views

CVE-2021-45105

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue wa...

5.9CVSS7.7AI score0.66522EPSS

CVE•added 2021/07/14 7:15 a.m.•548 views

CVE-2021-36374

When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Commonly used derived formats from ZIP archives a...

5.5CVSS6.2AI score0.00154EPSS

CVE•added 2021/08/18 3:15 p.m.•447 views

CVE-2021-37714

jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may be vulnerable to DOS attacks. If the parser is run on user supplied input, an attacker may supply content that causes the parser to get stuck (loop indefinitely until cancell...

7.5CVSS7.3AI score0.00505EPSS

CVE•added 2021/07/13 8:15 a.m.•359 views

CVE-2021-36090

When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' zip package.

7.5CVSS7.5AI score0.00279EPSS

CVE•added 2021/07/13 8:15 a.m.•278 views

CVE-2021-35515

When reading a specially crafted 7Z archive, the construction of the list of codecs that decompress an entry can result in an infinite loop. This could be used to mount a denial of service attack against services that use Compress' sevenz package.

7.5CVSS7.2AI score0.0012EPSS

CVE•added 2021/07/13 8:15 a.m.•274 views

CVE-2021-35517

When reading a specially crafted TAR archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress' tar package.

7.5CVSS7.5AI score0.00314EPSS

CVE•added 2021/07/14 7:15 a.m.•233 views

CVE-2021-36373

When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected.

5.5CVSS6.1AI score0.00127EPSS

CVE•added 2021/07/12 12:15 p.m.•225 views

CVE-2021-30129

A vulnerability in sshd-core of Apache Mina SSHD allows an attacker to overflow the server causing an OutOfMemory error. This issue affects the SFTP and port forwarding features of Apache Mina SSHD version 2.0.0 and later versions. It was addressed in Apache Mina SSHD 2.7.0

6.5CVSS6.9AI score0.00229EPSS

CVE•added 2021/06/12 10:15 a.m.•172 views

CVE-2021-31811

In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.

5.5CVSS5.6AI score0.00329EPSS

CVE•added 2022/07/19 10:15 p.m.•76 views

CVE-2022-21586

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications (component: Infrastructure). The supported version that is affected is 14.5. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Bankin...

6.4CVSS6.4AI score0.0094EPSS

CVE•added 2022/07/19 10:15 p.m.•74 views

CVE-2022-21581

5.9CVSS5.8AI score0.00431EPSS

CVE•added 2022/04/19 9:15 p.m.•66 views

CVE-2022-21474

5.9CVSS5.8AI score0.00243EPSS

CVE•added 2022/07/19 10:15 p.m.•65 views

CVE-2022-21584

6.4CVSS6.4AI score0.01455EPSS

CVE•added 2022/07/19 10:15 p.m.•57 views

CVE-2022-21583

6.4CVSS6.4AI score0.00641EPSS

CVE•added 2022/07/19 10:15 p.m.•54 views

CVE-2022-21585

6.7CVSS6.3AI score0.01377EPSS

CVE•added 2022/07/19 10:15 p.m.•53 views

CVE-2022-21582

6.7CVSS6.5AI score0.01377EPSS

CVE•added 2023/10/17 10:15 p.m.•41 views

CVE-2023-22122

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 14.5-14.7. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Ba...

5.9CVSS5.7AI score0.0008EPSS

CVE•added 2023/10/17 10:15 p.m.•35 views

CVE-2023-22124

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 14.5-14.7. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Bank...

5.4CVSS5AI score0.00176EPSS

CVE•added 2023/10/17 10:15 p.m.•34 views

CVE-2023-22123

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 14.5-14.7. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Bank...

5.4CVSS5AI score0.00176EPSS

CVE•added 2023/10/17 10:15 p.m.•33 views

CVE-2023-22121

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 14.5-14.7. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Ban...

5.4CVSS4.8AI score0.00106EPSS

CVE•added 2023/10/17 10:15 p.m.•33 views

CVE-2023-22125

Vulnerability in the Oracle Banking Trade Finance product of Oracle Financial Services Applications (component: Infrastructure). Supported versions that are affected are 14.5-14.7. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Bank...

5.4CVSS5AI score0.00176EPSS