Denial of Service Vulnerability in Oracle Banking Corporate Lending by Oracle
CVE-2018-3040

6.5MEDIUM

Key Information:

Vendor

Oracle
Status
Banking Corporate Lending
Vendor
CVE Published:
18 July 2018

What is CVE-2018-3040?

A vulnerability in Oracle Banking Corporate Lending allows low-privileged attackers with network access over HTTP to exploit the system. Successful exploitation can lead to denial of service, resulting in service interruptions or system crashes. This can severely affect the availability of the Oracle Banking Corporate Lending service, disrupting normal operations for users.

Affected Version(s)

Banking Corporate Lending 12.3.0

Banking Corporate Lending 12.4.0

Banking Corporate Lending 12.5.0

References

http://www.oracle.com/technetwork/security-advisory/cpuju...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1041307
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/104795
vdb-entryx_refsource_BID

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.