Integrity Vulnerability in Oracle FLEXCUBE Direct Banking by Oracle
CVE-2013-1562

Currently unrated

Key Information:

Vendor: Oracle
Status: Financial Services Software
Vendor: CVE Published:; 17 April 2013

Summary

An unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component may allow remote authenticated users to compromise the integrity of the system. This issue is found in several versions of Oracle Financial Services Software, exposing sensitive processes related to the HELP functionality that could be exploited by attackers. It is crucial for users of these versions to apply the necessary updates as advised by Oracle to mitigate risks.

References

http://www.oracle.com/technetwork/topics/security/cpuapr2...

x_refsource_CONFIRM

http://www.mandriva.com/security/advisories?name=MDVSA-20...

vendor-advisoryx_refsource_MANDRIVA

Timeline

Vulnerability published
Apr 17, 2013
Vulnerability Reserved
Jan 30, 2013