Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Vulnerability in the Oracle FLEXCUBE Direct Banking product of Oracle Financial Services Applications (component: Pre Login). Supported versions that are affected are 12.0.1, 12.0.2 and 12.0.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Direct Banking. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle FLEXCUBE Direct Banking accessible data. CVSS 3.1 Base Score 6.5 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N).
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Oracle FLEXCUBE Direct Banking product 安全漏洞
Vulnerability Description
Oracle FLEXCUBE Direct Banking是美国甲骨文(Oracle)公司的一个互联网和移动银行业务解决方案组件。 Oracle FLEXCUBE Direct Banking product 12.0.1版本,12.0.2版本和12.0.3版本存在安全漏洞,攻击者可利用该漏洞通过HTTP网络访问,以危及Oracle FLEXCUBE直接银行,导致对关键数据的未授权访问或对所有Oracle FLEXCUBE直接银行访问数据的完全访问。
CVSS Information
N/A
Vulnerability Type
N/A