Vulnerability in Oracle Financial Services Applications User Interface
CVE-2018-2727

8.1HIGH

Key Information:

Vendor
Oracle
Status
Financial Services Market Risk Measurement And Management
Vendor
CVE Published:
18 January 2018

Summary

A vulnerability exists in the Oracle Financial Services Market Risk Measurement and Management User Interface, affecting version 8.0.5. This issue can be exploited by low privileged attackers with network access through HTTP, enabling them to alter or delete critical data. Successful exploitation could result in unauthorized access to sensitive information and the manipulation of data within the affected application, compromising both confidentiality and integrity.

Affected Version(s)

Financial Services Market Risk Measurement and Management 8.0.5

References

http://www.oracle.com/technetwork/security-advisory/cpuja...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1040214
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/102667
vdb-entryx_refsource_BID

CVSS V3.1

Score:
8.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.