Oracle Flexcube Universal Banking vulnerabilities

95 known vulnerabilities affecting oracle/flexcube_universal_banking.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

HIGH20MEDIUM71LOW4

Vulnerabilities

Page 3 of 5

CVE-2018-3015HIGHCVSS 8.1v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-3015 [HIGH] CVE-2018-3015: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP

nvd

CVE-2018-2899MEDIUMCVSS 6.1v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-2899 [MEDIUM] CVE-2018-2899: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via H

nvd

CVE-2018-3019MEDIUMCVSS 5.4v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-3019 [MEDIUM] CVE-2018-3019: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HT

nvd

CVE-2018-2979MEDIUMCVSS 6.5v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-2979 [MEDIUM] CVE-2018-2979: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HT

nvd

CVE-2018-2974MEDIUMCVSS 6.3v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-2974 [MEDIUM] CVE-2018-2974: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HT

nvd

CVE-2018-2980MEDIUMCVSS 5.4v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-2980 [MEDIUM] CVE-2018-2980: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HT

nvd

CVE-2018-2981MEDIUMCVSS 5.4v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-2981 [MEDIUM] CVE-2018-2981: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HT

nvd

CVE-2018-2982MEDIUMCVSS 5.3v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-2982 [MEDIUM] CVE-2018-2982: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via

nvd

CVE-2018-2975MEDIUMCVSS 5.3v11.3.0v11.4.0+9 more2018-07-18

CVE-2018-2975 [MEDIUM] CVE-2018-2975: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0, 12.4.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via H

nvd

CVE-2018-2746HIGHCVSS 7.1v11.3.0v11.4.0+8 more2018-04-19

CVE-2018-2746 [HIGH] CVE-2018-2746: Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applica Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0 and 14.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful

nvd

CVE-2018-2747MEDIUMCVSS 6.5v11.3.0v11.4.0+8 more2018-04-19

CVE-2018-2747 [MEDIUM] CVE-2018-2747: Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applica Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0 and 14.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successfu

nvd

CVE-2018-2748MEDIUMCVSS 6.1v11.3.0v11.4.0+8 more2018-04-19

CVE-2018-2748 [MEDIUM] CVE-2018-2748: Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applica Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0 and 14.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successf

nvd

CVE-2018-2749MEDIUMCVSS 5.4v11.3.0v11.4.0+8 more2018-04-19

CVE-2018-2749 [MEDIUM] CVE-2018-2749: Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applica Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0 and 14.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successfu

nvd

CVE-2018-2648HIGHCVSS 8.8v11.3.0v11.4.0+7 more2018-01-18

CVE-2018-2648 [HIGH] CVE-2018-2648: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise O

nvd

CVE-2018-2649HIGHCVSS 8.1v11.3.0v11.4.0+7 more2018-01-18

CVE-2018-2649 [HIGH] CVE-2018-2649: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise O

nvd

CVE-2018-2630MEDIUMCVSS 5.4v11.5.0v11.6.0+1 more2018-01-18

CVE-2018-2630 [MEDIUM] CVE-2018-2630: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Security Management System). Supported versions that are affected are 11.5.0, 11.6.0 and 11.7.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle FLEXCUBE Universal Banking.

nvd

CVE-2018-2614MEDIUMCVSS 5.3v11.3.0v11.4.0+7 more2018-01-18

CVE-2018-2614 [MEDIUM] CVE-2018-2614: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0 and 12.4.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromi

nvd

CVE-2017-10363HIGHCVSS 7.1v11.3v11.4.0+7 more2017-10-19

CVE-2017-10363 [HIGH] CVE-2017-10363: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Security). Supported versions that are affected are 11.3, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0, 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle

nvd

CVE-2017-10085HIGHCVSS 7.1v11.3.0v11.4.0+6 more2017-08-08

CVE-2017-10085 [HIGH] CVE-2017-10085: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Infrastructure). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle

nvd

CVE-2017-10084MEDIUMCVSS 6.5v11.3.0v11.4.0+6 more2017-08-08

CVE-2017-10084 [MEDIUM] CWE-200 CVE-2017-10084: Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applic Vulnerability in the Oracle FLEXCUBE Universal Banking component of Oracle Financial Services Applications (subcomponent: Report Generator). Supported versions that are affected are 11.3.0, 11.4.0, 12.0.1, 12.0.2, 12.0.3, 12.1.0, 12.2.0 and 12.3.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compro

nvd

← Previous3 / 5Next →