Flexcube Private Banking@12.0.3.0 Security Vulnerabilities and Issues — Flexcube Private Banking@12.0.3.0 CVE List

Lucene search

OracleFlexcube Private Banking12.0.3.0

3 matches found

CVE•added 2018/09/10 8:29 p.m.•142 views

CVE-2018-11775

TLS hostname verification when using the Apache ActiveMQ Client before 5.15.6 was missing which could make the client vulnerable to a MITM attack between a Java application using the ActiveMQ client and the ActiveMQ server. This is now enabled by default.

7.4CVSS7.1AI score0.0084EPSS

CVE•added 2018/06/25 3:29 p.m.•108 views

CVE-2018-11040

Spring Framework, versions 5.0.x prior to 5.0.7 and 4.3.x prior to 4.3.18 and older unsupported versions, allows web applications to enable cross-domain requests via JSONP (JSON with Padding) through AbstractJsonpResponseBodyAdvice for REST controllers and MappingJackson2JsonView for browser reques...

7.5CVSS8.3AI score0.08246EPSS

CVE•added 2018/05/11 8:29 p.m.•104 views

CVE-2018-1257

Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior to 4.3.17, and older unsupported versions allows applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A malicious user (or attacker) can craft a message ...

6.5CVSS7AI score0.0179EPSS