Vulnerabilities > Oracle > Banking Payments > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-12-18 CVE-2021-45105 Uncontrolled Recursion vulnerability in multiple products
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups.
network
high complexity
apache netapp debian sonicwall oracle CWE-674
5.9
2021-11-01 CVE-2021-41973 Infinite Loop vulnerability in multiple products
In Apache MINA, a specifically crafted, malformed HTTP request may cause the HTTP Header decoder to loop indefinitely.
network
low complexity
apache oracle CWE-835
6.5
2021-07-12 CVE-2021-30129 Missing Release of Resource after Effective Lifetime vulnerability in multiple products
A vulnerability in sshd-core of Apache Mina SSHD allows an attacker to overflow the server causing an OutOfMemory error.
network
low complexity
apache oracle CWE-772
6.5
2020-01-15 CVE-2020-2714 Unspecified vulnerability in Oracle Banking Payments 14.1.0/14.3.0
Vulnerability in the Oracle Banking Payments product of Oracle Financial Services Applications (component: Core).
network
low complexity
oracle
4.3
2020-01-15 CVE-2020-2712 Unspecified vulnerability in Oracle Banking Payments 14.1.0/14.3.0
Vulnerability in the Oracle Banking Payments product of Oracle Financial Services Applications (component: Core).
network
low complexity
oracle
5.4
2020-01-15 CVE-2020-2711 Unspecified vulnerability in Oracle Banking Payments 14.1.0/14.3.0
Vulnerability in the Oracle Banking Payments product of Oracle Financial Services Applications (component: Core).
network
low complexity
oracle
6.5
2020-01-15 CVE-2020-2710 Unspecified vulnerability in Oracle Banking Payments 14.1.0/14.3.0
Vulnerability in the Oracle Banking Payments product of Oracle Financial Services Applications (component: Core).
network
low complexity
oracle
5.4
2019-10-23 CVE-2019-12415 XXE vulnerability in multiple products
In Apache POI up to 4.1.0, when using the tool XSSFExportToXml to convert user-provided Microsoft Excel documents, a specially crafted document can allow an attacker to read files from the local filesystem or from internal network resources via XML External Entity (XXE) Processing.
local
low complexity
apache oracle CWE-611
5.5
2018-07-18 CVE-2018-3026 Unspecified vulnerability in Oracle Banking Payments
Vulnerability in the Oracle Banking Payments component of Oracle Financial Services Applications (subcomponent: Payments Core).
network
low complexity
oracle
5.4
2018-07-18 CVE-2018-3025 Unspecified vulnerability in Oracle Banking Payments
Vulnerability in the Oracle Banking Payments component of Oracle Financial Services Applications (subcomponent: Payments Core).
network
high complexity
oracle
5.3