N/A

Vulnerability in the Oracle FLEXCUBE Direct Banking product of Oracle Financial Services Applications (component: Pre Login). Supported versions that are affected are 12.0.2 and 12.0.3. Difficult to exploit vulnerability allows high privileged attacker with network access via Oracle Net to compromise Oracle FLEXCUBE Direct Banking. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle FLEXCUBE Direct Banking accessible data. CVSS 3.1 Base Score 2.0 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N).

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N

N/A

Oracle FLEXCUBE Direct Banking 安全漏洞

Oracle FLEXCUBE Direct Banking是美国甲骨文（Oracle）公司的一个互联网和移动银行业务解决方案组件。 Oracle FLEXCUBE Direct Banking Pre Login 12.0.2, 12.0.3 存在安全漏洞，该漏洞允许通过oraclenet网络访问的高特权攻击者破坏Oracle FLEXCUBE Direct Banking。导致未经授权的更新、插入或删除对Oracle FLEXCUBE Direct Banking可访问数据的访问权限。

N/A

N/A