CVE-2012-0509 — Heap-based Buffer Overflow in Oracle Financial Services Software

CWE-122 — Heap-based Buffer Overflow4 documents4 sources

Severity

3.5LOWNVD

EPSS

0.2%

top 58.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Financial Services Software

Timeline

PublishedMay 3

Latest updateMay 4

Description

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5.0.2 and 5.3.0 through 5.3.4 allows remote authenticated users to affect integrity via unknown vectors related to Core-Base.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 6.8 | Impact: 2.9

Affected Packages1 packages

▶NVDoracle/financial_services_software5.0.2, 5.3.0, 5.3.4+2

🔴Vulnerability Details

GHSA

GHSA-fggf-5wfr-gcrp: Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5↗2022-05-04

▶

CVEList

CVE-2012-0509: Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 5↗2012-05-03

▶

📋Vendor Advisories

Red Hat

Wireshark: Use-after-free causes heap-based buffer overflow in X.509if dissector↗2011-04-15

▶