Vulnerabilities > Oracle > Banking Payments > 14.0.0

DATE CVE VULNERABILITY TITLE RISK
2019-10-23 CVE-2019-12415 XXE vulnerability in multiple products
In Apache POI up to 4.1.0, when using the tool XSSFExportToXml to convert user-provided Microsoft Excel documents, a specially crafted document can allow an attacker to read files from the local filesystem or from internal network resources via XML External Entity (XXE) Processing.
local
low complexity
apache oracle CWE-611
5.5
2018-04-19 CVE-2018-2749 Unspecified vulnerability in Oracle products
Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module).
network
low complexity
oracle
5.4
2018-04-19 CVE-2018-2748 Unspecified vulnerability in Oracle products
Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module).
network
low complexity
oracle
6.1
2018-04-19 CVE-2018-2747 Unspecified vulnerability in Oracle products
Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module).
network
low complexity
oracle
6.5
2018-04-19 CVE-2018-2746 Unspecified vulnerability in Oracle products
Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module).
network
low complexity
oracle
7.1