Vulnerability in Oracle Financial Services Applications Price Creation Component
CVE-2018-2721
8.1HIGH
Key Information:
- Vendor
- Oracle
- Vendor
- CVE Published:
- 18 January 2018
Summary
A vulnerability exists in the Oracle Financial Services Price Creation and Discovery component that permits a low-privileged attacker with network access via HTTP to exploit system weaknesses. This exploitation allows unauthorized creation, deletion, or modification of critical data. Attackers can gain complete access to sensitive information, compromising the integrity and confidentiality of all accessible data within the Oracle Financial Services Price Creation and Discovery.
Affected Version(s)
Financial Services Price Creation and Discovery 8.0.5
References
CVSS V3.1
Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved