12.3.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-04-19	CVE-2018-2747	Unspecified vulnerability in Oracle products Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). network low complexity oracle	4.0
2018-04-19	CVE-2018-2746	Unspecified vulnerability in Oracle products Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). network low complexity oracle	5.5
2017-04-24	CVE-2017-3489	Remote Security vulnerability in Oracle FLEXCUBE Investor Servicing Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Security Management System). network low complexity oracle	5.5
2017-04-24	CVE-2017-3488	Remote Security vulnerability in Oracle FLEXCUBE Investor Servicing Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Unit Trust). network low complexity oracle	4.0
2017-04-24	CVE-2017-3487	Remote Security vulnerability in Oracle FLEXCUBE Investor Servicing Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Unit Trust). network oracle	3.5
2017-04-24	CVE-2017-3288	Remote Security vulnerability in Oracle FLEXCUBE Investor Servicing Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Unit Trust). network low complexity oracle	5.5
2017-04-17	CVE-2017-5645	Deserialization of Untrusted Data vulnerability in multiple products In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code. network low complexity apache netapp redhat oracle CWE-502 critical	9.8
2017-01-27	CVE-2016-8319	Improper Access Control vulnerability in Oracle Flexcube Investor Servicing Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Core). network oracle CWE-284	5.8
2017-01-27	CVE-2016-8317	Improper Access Control vulnerability in Oracle Flexcube Investor Servicing Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Unit Trust). network oracle CWE-284	3.5
2017-01-27	CVE-2016-8316	Improper Access Control vulnerability in Oracle Flexcube Investor Servicing Vulnerability in the Oracle FLEXCUBE Investor Servicing component of Oracle Financial Services Applications (subcomponent: Core). network oracle CWE-284	4.9