4.1.0

CVSS 4.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

oracle

NVD

Published: 2013-04-17

Updated: 2013-10-11

Summary

Unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component in Oracle Financial Services Software 2.8.0 through 4.1.0 allows remote authenticated users to affect confidentiality via vectors related to BASE, a different vulnerability than CVE-2013-1560.

Vulnerable Configurations

Part	Description	Count
Application	Oracle Oracle Financial Services Software 2.8.0 Oracle Financial Services Software 3.1.0 Oracle Financial Services Software 4.1.0	3

References

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
http://www.oracle.com/technetwork/topics/security/cpuapr2013-1899555.html