CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2017-3475
https://notcve.org/view.php?id=CVE-2017-3475
24 Apr 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0.1 and 12.0.1. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. While the vulnerability is in Oracle FLEXCUBE Private Banking, attacks may significantly impact additional products. Successful attacks of this vulnerability c... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2017-3476
https://notcve.org/view.php?id=CVE-2017-3476
24 Apr 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0.1 and 12.0.1. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle FLEXCUBE Private Banking accessibl... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 4.9EPSS: 0%CPEs: 2EXPL: 0CVE-2017-3477
https://notcve.org/view.php?id=CVE-2017-3477
24 Apr 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 12.0.0 and 12.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle FLEXCUBE Private Banking accessible data as well as unau... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-3478
https://notcve.org/view.php?id=CVE-2017-3478
24 Apr 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 12.0.0 and 12.1.0. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle FLEXCUBE Private Banking accessible data as well as unau... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2017-3479
https://notcve.org/view.php?id=CVE-2017-3479
24 Apr 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0.1 and 12.0.1. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle FLEXCUBE Private Banking accessible data ... • http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html •
CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2016-8308
https://notcve.org/view.php?id=CVE-2016-8308
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized upd... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html •
CVSS: 8.2EPSS: 0%CPEs: 3EXPL: 0CVE-2016-8312
https://notcve.org/view.php?id=CVE-2016-8312
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle FLEXCUBE Private Banking, attac... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-284: Improper Access Control •
CVSS: 4.1EPSS: 0%CPEs: 3EXPL: 0CVE-2016-8313
https://notcve.org/view.php?id=CVE-2016-8313
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle FLEXCUBE Private Banking, attack... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2016-8282
https://notcve.org/view.php?id=CVE-2016-8282
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle FLEXCUBE Private Banking, attac... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-284: Improper Access Control •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2016-8298
https://notcve.org/view.php?id=CVE-2016-8298
27 Jan 2017 — Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle FLEXCUBE Privat... • http://www.oracle.com/technetwork/security-advisory/cpujan2017-2881727.html • CWE-284: Improper Access Control •