Remote Access Vulnerability in Oracle FLEXCUBE from Oracle Financial Services Software
CVE-2013-1535

Currently unrated

Key Information:

Vendor: Oracle
Status: Financial Services Software
Vendor: CVE Published:; 17 April 2013

Summary

An unspecified vulnerability exists in the Oracle FLEXCUBE Direct Banking component of Oracle Financial Services Software affecting versions 2.8.0 through 6.0.1. This flaw could allow remote attackers to compromise the confidentiality of sensitive data through specific exploit vectors related to the BASE. Organizations utilizing affected versions should apply security patches and review their configurations to mitigate potential risks.

References

http://www.oracle.com/technetwork/topics/security/cpuapr2...

x_refsource_CONFIRM

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

Timeline

Vulnerability published
Apr 17, 2013
Vulnerability Reserved
Jan 30, 2013