CVE-2013-2385

3 documents3 sources

Severity

4.0MEDIUM

EPSS

0.2%

top 61.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Financial Services Software

Timeline

PublishedApr 17

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 2.8.0 through 4.1.0 allows remote authenticated users to affect confidentiality via vectors related to BASE, a different vulnerability than CVE-2013-1560.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

▶NVDoracle/financial_services_software2.8.0, 3.1.0, 4.1.0+2

🔴Vulnerability Details

GHSA

GHSA-whm4-x5v8-qcfw: Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 2↗2022-05-17

▶

CVEList

CVE-2013-2385: Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 2↗2013-04-17

▶