Oracle Flexcube Private Banking vulnerabilities

CVE-2017-3473 [MEDIUM] CVE-2017-3473: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0.1 and 12.0.1. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successf

CVE-2017-3477 [MEDIUM] CVE-2017-3477: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 12.0.0 and 12.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks of t

CVE-2017-3479 [MEDIUM] CVE-2017-3479: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 2.0.0, 2.0.1, 2.2.0.1 and 12.0.1. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successf

CVE-2017-3478 [MEDIUM] CVE-2017-3478: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 12.0.0 and 12.1.0. Easily "exploitable" vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks of t

CVE-2017-3471 [MEDIUM] CVE-2017-3471: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Miscellaneous). Supported versions that are affected are 12.0.0 and 12.1.0. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Successful attacks req

CVE-2016-8312 [HIGH] CWE-284 CVE-2016-8312: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking

CVE-2016-8298 [HIGH] CWE-284 CVE-2016-8298: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking.

CVE-2016-8308 [MEDIUM] CVE-2016-8308: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banking. Succ

CVE-2016-5623 [MEDIUM] CWE-254 CVE-2016-5623: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Bankin

CVE-2016-8300 [MEDIUM] CWE-284 CVE-2016-8300: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Bank

CVE-2016-5614 [MEDIUM] CWE-200 CVE-2016-5614: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Bankin

CVE-2016-8313 [MEDIUM] CWE-200 CVE-2016-8313: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Bankin

CVE-2016-8282 [MEDIUM] CWE-284 CVE-2016-8282: Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applicat Vulnerability in the Oracle FLEXCUBE Private Banking component of Oracle Financial Services Applications (subcomponent: Product / Instrument Search). Supported versions that are affected are 2.0.1, 2.2.0 and 12.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle FLEXCUBE Private Banki

CVE-2016-5493 [MEDIUM] CWE-284 CVE-2016-5493: Unspecified vulnerability in the Oracle FLEXCUBE Private Banking component in Oracle Financial Servi Unspecified vulnerability in the Oracle FLEXCUBE Private Banking component in Oracle Financial Services Applications 12.0.1 through 12.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.

CVE-2013-4316 [CRITICAL] CWE-16 CVE-2013-4316: Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.