CVE-2017-3490

3 documents3 sources
Severity
3.1LOW
EPSS
0.2%
top 51.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Corporation Flexcube Enterprise Limits AND Collateral ManagementOracle Flexcube Enterprise Limits AND Collateral Management
Timeline
PublishedApr 24
Latest updateMay 13

Description

Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Limits and Collateral). Supported versions that are affected are 12.0.0 and 12.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Enterprise Limits and Collateral Management. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Ora

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.6 | Impact: 1.4

Affected Packages2 packages

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-p6rj-2xv6-9g3c: Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Li2022-05-13
CVEList
CVE-2017-3490: Vulnerability in the Oracle FLEXCUBE Enterprise Limits and Collateral Management component of Oracle Financial Services Applications (subcomponent: Li2017-04-24
CVE-2017-3490 (LOW CVSS 3.1) | Vulnerability in the Oracle FLEXCUB | cvebase.io