17 matches found
CVE-2019-2980
CVE-2019-2980 affects Oracle FLEXCUBE Direct Banking (component: eMail) in Oracle Financial Services Applications. A vulnerability allows a low-privileged, network-accessible attacker (via HTTP) to compromise the system and gain unauthorized access to critical data or full access to all Oracle FL...
CVE-2017-3495
Oracle FLEXCUBE Direct Banking (Pre-Login) vulnerability CVE-2017-3495 exists in Oracle Financial Services Applications. Connected sources corroborate affected versions 12.0.2 and 12.0.3 and describe an unauthenticated, network-accessible issue via HTTP in the Pre-Login subcomponent that can lead...
CVE-2019-2979
CVE-2019-2979 is a vulnerability in Oracle FLEXCUBE Direct Banking (Payments) affecting 12.0.2 and 12.0.3. The issue allows a low-privileged, network-accessible attacker (via HTTP) to compromise the product, with successful exploits requiring user interaction from someone other than the attacker....
CVE-2019-2550
CVE-2019-2550 affects Oracle FLEXCUBE Direct Banking (Logoff Page) version 12.0.2. The vulnerability allows an unauthenticated attacker with network access via HTTP to affect Oracle FLEXCUBE Direct Banking, with exploitation requiring human interaction. Reported impact: unauthorized update/insert...
CVE-2017-3245
CVE-2017-3245 affects Oracle FLEXCUBE Direct Banking (Pre-Login) in Oracle Financial Services Applications. Affected versions: 12.0.2 and 12.0.3. The vulnerability allows an unauthenticated attacker who can reach the service over HTTP to compromise Direct Banking, with successful attacks potentia...
CVE-2019-2549
CVE-2019-2549 affects Oracle FLEXCUBE Direct Banking (Logoff Page, 12.0.2). The vulnerability allows unauthenticated attackers with network access via HTTP to compromise data from Oracle FLEXCUBE Direct Banking, with human interaction required for exploitation, and risks involving unauthorized up...
CVE-2017-3297
The CVE-2017-3297 entry concerns Oracle FLEXCUBE Direct Banking (subcomponent: Framework). Affected versions are 12.0.2 and 12.0.3. The vulnerability is described as difficult to exploit, allowing a low-privilege attacker with network access via HTTP to compromise Oracle FLEXCUBE Direct Banking, ...
CVE-2020-14897
The CVE-2020-14897 vulnerability affects Oracle FLEXCUBE Direct Banking (Pre Login component) in versions 12.0.1, 12.0.2, and 12.0.3. The issue allows unauthenticated network access over HTTP to compromise data, with exploitation requiring user interaction, and leads to possible unauthorized acce...
CVE-2021-2141
The CVE-2021-2141 issue affects Oracle FLEXCUBE Direct Banking, Pre Login component, in affected Oracle Financial Services Applications releases 12.0.2 and 12.0.3. The vulnerability can be exploited by a high-privilege attacker who has network access via Oracle Net, but exploitation requires user...
CVE-2016-0699
CVE-2016-0699 affects Oracle Financial Services Software’s FLEXCUBE Direct Banking component (versions 12.0.2 and 12.0.3 ). The vulnerability is in the Login sub-component and can be exploited remotely over the network to compromise confidentiality and integrity . The NVD entry lists a CVSSv3 bas...
CVE-2016-3464
CVE-2016-3464 concerns Oracle FLEXCUBE Direct Banking (Oracle Financial Services Software) 12.0.3. A vulnerability in the Accounts subcomponent allows remote authenticated users to affect confidentiality. The root cause isnot fully detailed in the provided sources; no exploit, vectors, or specifi...
CVE-2018-2674
CVE-2018-2674 affects Oracle FLEXCUBE Direct Banking (Logoff) in Oracle Financial Services Applications, specifically 12.0.2 and 12.0.3. The vulnerability permits an unauthenticated attacker with network access via HTTP to compromise the Direct Banking component, with attacks requiring human inte...
CVE-2017-10181
The CVE-2017-10181 entry concerns Oracle FLEXCUBE Direct Banking (Forgot Password) in Oracle Financial Services Applications. Affected version: 12.0.2 and 12.0.3. Description: a low-privileged, network-accessible attacker via HTTP can exploit this vulnerability to cause a hang/frequent crash (DOS...
CVE-2016-0672
CVE-2016-0672 affects Oracle FLEXCUBE Direct Banking (Oracle Financial Services Software) versions 12.0.2 and 12.0.3. The issue is described as an unspecified vulnerability exploitable via Pre-Login that can affect confidentiality and integrity. Connected sources confirm the vulnerability in the ...
CVE-2020-14890
CVE-2020-14890 is a vulnerability in the Pre Login component of Oracle FLEXCUBE Direct Banking (versions 12.0.1, 12.0.2, 12.0.3). An unauthenticated attacker with network access via HTTP can compromise the system, with attacks requiring user interaction. The impact is access to critical data or c...
CVE-2016-3589
Technical details, affected components, and potential impact for CVE-2016-3589 are not publicly provided in the supplied connected documents. Monitor for updates from Oracle and vulnerability databases for confirmed specifics and remediation guidance.
CVE-2016-3463
CVE-2016-3463 affects the Oracle FLEXCUBE Direct Banking component of Oracle Financial Services Software 12.0.3. The connected CNVD entry describes an unspecified Pre-Login vulnerability in this component that can be exploited remotely to read, update, insert, or delete data, thereby impacting co...