Vulnerability Details : CVE-2012-0571
Unspecified vulnerability in the Oracle FLEXCUBE Universal Banking component in Oracle Financial Services Software 10.0.0 through 10.5.0 and 11.0.0 through 11.4.0 allows remote authenticated users to affect integrity via unknown vectors related to Core, a different vulnerability than CVE-2012-0544.
Exploit prediction scoring system (EPSS) score for CVE-2012-0571
Probability of exploitation activity in the next 30 days: 0.16%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 52 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2012-0571
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
4.0
|
MEDIUM | AV:N/AC:L/Au:S/C:N/I:P/A:N |
8.0
|
2.9
|
NIST |
References for CVE-2012-0571
-
http://www.securityfocus.com/bid/53103
Oracle FLEXCUBE Universal Bank CVE-2012-0571 Remote VulnerabilityThird Party Advisory;VDB Entry
-
http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html
Oracle Critical Patch Update - April 2012Patch;Vendor Advisory
-
http://www.securitytracker.com/id?1026953
Oracle Financial Services Software Bugs Let Remote Users Partially Access and Modify Data and Cause Partial Denial of Service Conditions - SecurityTrackerThird Party Advisory;VDB Entry
Products affected by CVE-2012-0571
- cpe:2.3:a:oracle:financial_services_software:10.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_software:10.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_software:11.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_software:11.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:financial_services_software:11.2.0:*:*:*:*:*:*:*