CVE-2012-0546 — Oracle Financial Services Software vulnerability

4 documents4 sources

Severity

3.6LOWNVD

EPSS

0.6%

top 31.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Financial Services Software

Timeline

PublishedMay 3

Latest updateMay 4

Description

Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10.0.0 through 10.5.0 and 11.0.0 through 11.2.0 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to Core, a different vulnerability than CVE-2012-0545 and CVE-2012-0567.

CVSS vector

AV:N/AC:H/C:P/I:P/A:NExploitability: 3.9 | Impact: 4.9

Affected Packages1 packages

▶NVDoracle/financial_services_software4 versions+3

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-3ggv-9j33-p9pg: Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10↗2022-05-04

▶

CVEList

CVE-2012-0546: Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10↗2012-05-03

▶

📋Vendor Advisories

Red Hat

php: command line arguments injection when run in CGI mode (VU#520827)↗2012-05-03

▶