PT-2013-3712 · Oracle · Oracle Financial Services+1

Published

2013-04-17

Updated

2013-10-11

CVE-2013-2377

CVSS v2.0

3.5

Low

Vector

AV:N/AC:M/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Oracle Financial Services Software versions 2.8.0 through 4.1.0

Description The issue affects confidentiality and can be exploited by remote authenticated users via unknown vectors related to My Services in the Oracle FLEXCUBE Direct Banking component.

Recommendations For versions 2.8.0 through 4.1.0, update to a version that contains a fix for this issue, as no specific workaround or mitigation measures have been provided.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2013-2377

Affected Products

Oracle Flexcube Direct Banking

Oracle Financial Services

PT-2013-3712 · Oracle · Oracle Financial Services+1

CVE-2013-2377

Related Identifiers

Affected Products

References · 3