Unspecified Vulnerability in Oracle FLEXCUBE Direct Banking Component
CVE-2016-3589

6.1MEDIUM

Key Information:

Vendor
Oracle
Status
Flexcube Direct Banking
Vendor
CVE Published:
21 July 2016

Summary

An unspecified vulnerability exists in the Oracle FLEXCUBE Direct Banking component, which could potentially be exploited by remote attackers. The flaw may affect the confidentiality and integrity of sensitive data within Oracle Financial Services Applications versions 12.0.1, 12.0.2, and 12.0.3. Attackers could utilize unknown vectors to expose this vulnerability, highlighting the need for immediate security review and mitigation strategies.

References

http://www.securityfocus.com/bid/91847
vdb-entryx_refsource_BID
http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/91787
vdb-entryx_refsource_BID

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.