Remote Vulnerability in Oracle FLEXCUBE Direct Banking Affects Financial Services Software
CVE-2016-0672

6.1MEDIUM

Key Information:

Vendor
Oracle
Status
Flexcube Direct Banking
Vendor
CVE Published:
21 April 2016

Summary

An unspecified vulnerability in the Oracle FLEXCUBE Direct Banking component allows remote attackers to compromise the confidentiality and integrity of affected systems. This flaw is particularly concerning as it could be exploited through vectors related to the Pre-Login process, potentially leading to unauthorized access and data manipulation.

References

http://www.securitytracker.com/id/1035604
vdb-entryx_refsource_SECTRACK
http://www.oracle.com/technetwork/security-advisory/cpuap...
x_refsource_CONFIRM

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.