CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2016-8311
https://notcve.org/view.php?id=CVE-2016-8311
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle FLEXCUBE Univers... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-284: Improper Access Control •
CVSS: 8.1EPSS: 0%CPEs: 7EXPL: 0CVE-2016-8297
https://notcve.org/view.php?id=CVE-2016-8297
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle ... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-284: Improper Access Control •
CVSS: 6.5EPSS: 0%CPEs: 7EXPL: 0CVE-2016-8299
https://notcve.org/view.php?id=CVE-2016-8299
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle FLEXCUBE Universal Bank... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-284: Improper Access Control •
CVSS: 4.3EPSS: 0%CPEs: 7EXPL: 0CVE-2016-8301
https://notcve.org/view.php?id=CVE-2016-8301
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in u... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html •
CVSS: 4.3EPSS: 0%CPEs: 7EXPL: 0CVE-2016-8302
https://notcve.org/view.php?id=CVE-2016-8302
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle FLEXCUBE Universal Banking accessible d... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 7EXPL: 0CVE-2016-8303
https://notcve.org/view.php?id=CVE-2016-8303
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle FLEXCUBE Univers... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-254: 7PK - Security Features •
CVSS: 5.4EPSS: 0%CPEs: 7EXPL: 0CVE-2016-8304
https://notcve.org/view.php?id=CVE-2016-8304
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Core). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0 and 12.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle FLEXCUBE Universa... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-284: Improper Access Control •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2016-5479
https://notcve.org/view.php?id=CVE-2016-5479
25 Oct 2016 — Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, and 12.0.1 allows remote authenticated users to affect confidentiality via vectors related to INFRA. Vulnerabilidad no especificada en el componente Oracle FLEXCUBE Universal Banking en Oracle Financial Services Applications 11.3.0, 11.4.0 y 12.0.1 permite a usuarios remotos autenticados afectar la confidencialidad a través de vectores relacionados con INFRA. • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2016-5502
https://notcve.org/view.php?id=CVE-2016-5502
25 Oct 2016 — Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality and integrity via vectors related to INFRA. Vulnerabilidad no especificada en el componente Oracle FLEXCUBE Universal Banking en Oracle Financial Services Applications 11.3.0, 11.4.0, 12.0.1 hasta la versión 12.0.3 permite a usuarios remotos autenticados afectar la confidencialidad y la integri... • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html • CWE-284: Improper Access Control •
CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2016-5594
https://notcve.org/view.php?id=CVE-2016-5594
25 Oct 2016 — Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Applications 11.3.0, 11.4.0, and 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality via vectors related to INFRA. Vulnerabilidad no especificada en el componente Oracle FLEXCUBE Universal Banking en Oracle Financial Services Applications 11.3.0, 11.4.0 y 12.0.1 hasta la versión 12.0.3 permite a usuarios remotos autenticados afectar la confidencialidad a través de vectores ... • http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html • CWE-284: Improper Access Control •