CVE-2018-3040

Name of the Vulnerable Software and Affected Versions Oracle Banking Corporate Lending versions 12.3.0, 12.4.0, 12.5.0, 14.0.0, and 14.1.0

Description The issue allows a low-privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks can result in the unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Banking Corporate Lending.

Recommendations For versions 12.3.0, 12.4.0, 12.5.0, 14.0.0, and 14.1.0, update to a version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.