cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-14894,https://securityvulnerability.io/vulnerability/CVE-2020-14894,Oracle Financial Services Applications Vulnerability in Banking Corporate Lending,"An improper input validation vulnerability exists in the Oracle Banking Corporate Lending product, allowing low privileged attackers with network access via HTTP to exploit the system. This flaw can lead to unauthorized access to sensitive data or potentially full access to all data within the Oracle Banking Corporate Lending application. Affected versions of the product include 12.3.0 and 14.0.0 to 14.4.0. Swift action is recommended to mitigate any risks associated with this vulnerability.",Oracle,Banking Corporate Lending,6.5,MEDIUM,0.0009399999980814755,false,,false,false,false,,,false,false,,2020-10-21T14:04:30.000Z,0
CVE-2020-2717,https://securityvulnerability.io/vulnerability/CVE-2020-2717,Unauthorized Access Vulnerability in Oracle Banking Corporate Lending by Oracle,"An unauthenticated access vulnerability exists in the Oracle Banking Corporate Lending product that can be exploited by remote attackers with network access. This vulnerability enables malicious individuals to perform unauthorized read, insert, update, or delete operations on accessible data. The attack requires human interaction from a third party, highlighting the need for a vigilant approach to cybersecurity measures within the affected versions.",Oracle,Banking Corporate Lending,5.4,MEDIUM,0.0008299999753944576,false,,false,false,false,,,false,false,,2020-01-15T16:34:08.000Z,0
CVE-2020-2718,https://securityvulnerability.io/vulnerability/CVE-2020-2718,Exploitable HTTP Vulnerability in Oracle Banking Corporate Lending,"An easily exploitable vulnerability exists in the Oracle Banking Corporate Lending application, specifically affecting versions 12.3.0 to 12.4.0 and 14.0.0 to 14.3.0. This flaw allows a low-privileged attacker with network access over HTTP to compromise the system. Successful exploitation may lead to unauthorized access to sensitive data, enabling attackers to manipulate the database by updating, inserting, or deleting data. Organizations using these versions are advised to implement necessary security measures to mitigate potential risks.",Oracle,Banking Corporate Lending,7.1,HIGH,0.0008900000248104334,false,,false,false,false,,,false,false,,2020-01-15T16:34:08.000Z,0
CVE-2020-2716,https://securityvulnerability.io/vulnerability/CVE-2020-2716,Unauthorized Access Vulnerability in Oracle Banking Corporate Lending by Oracle,"A vulnerability exists in the Oracle Banking Corporate Lending product that allows a low privileged attacker with network access via HTTP to gain unauthorized access to sensitive data. This vulnerability impacts multiple versions of the product and could lead to a situation where critical data becomes accessible, threatening the integrity and security of banking operations.",Oracle,Banking Corporate Lending,6.5,MEDIUM,0.0008900000248104334,false,,false,false,false,,,false,false,,2020-01-15T16:34:08.000Z,0
CVE-2020-2715,https://securityvulnerability.io/vulnerability/CVE-2020-2715,Vulnerability in Oracle Banking Corporate Lending by Oracle,"A vulnerability exists in Oracle Banking Corporate Lending that can be exploited by low-privileged attackers with network access via HTTP. This flaw allows unauthorized users to perform actions such as updating, inserting, or deleting data, as well as unauthorized reading of accessible data. It affects multiple versions of the software, prompting urgent attention to ensure data confidentiality and integrity are maintained.",Oracle,Banking Corporate Lending,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-01-15T16:34:08.000Z,0
CVE-2020-2719,https://securityvulnerability.io/vulnerability/CVE-2020-2719,Unauthorized Data Access Risk in Oracle Banking Corporate Lending by Oracle,"A vulnerability has been identified in Oracle Banking Corporate Lending, which enables a low-privileged attacker with network access via HTTP to gain unauthorized read access to sensitive data. This issue affects versions 12.3.0 through 12.4.0 and 14.0.0 through 14.3.0 of the product. The exploitation of this vulnerability poses a significant risk to the confidentiality of customer data, making it crucial for users to apply necessary security patches to protect against potential data breaches.",Oracle,Banking Corporate Lending,4.3,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2020-01-15T16:34:08.000Z,0
CVE-2018-3040,https://securityvulnerability.io/vulnerability/CVE-2018-3040,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Banking Corporate Lending. CVSS 3.0 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).",Oracle,Banking Corporate Lending,6.5,MEDIUM,0.0008200000156648457,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-3042,https://securityvulnerability.io/vulnerability/CVE-2018-3042,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Banking Corporate Lending accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Banking Corporate Lending. CVSS 3.0 Base Score 5.4 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L).",Oracle,Banking Corporate Lending,5.4,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-3048,https://securityvulnerability.io/vulnerability/CVE-2018-3048,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Banking Corporate Lending, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Banking Corporate Lending accessible data as well as unauthorized read access to a subset of Oracle Banking Corporate Lending accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N).",Oracle,Banking Corporate Lending,5.4,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-2895,https://securityvulnerability.io/vulnerability/CVE-2018-2895,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Banking Corporate Lending, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Banking Corporate Lending accessible data as well as unauthorized read access to a subset of Oracle Banking Corporate Lending accessible data. CVSS 3.0 Base Score 6.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N).",Oracle,Banking Corporate Lending,6.1,MEDIUM,0.001290000043809414,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-3038,https://securityvulnerability.io/vulnerability/CVE-2018-3038,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Banking Corporate Lending accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N).",Oracle,Banking Corporate Lending,5.3,MEDIUM,0.0013099999632686377,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-3050,https://securityvulnerability.io/vulnerability/CVE-2018-3050,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Banking Corporate Lending accessible data as well as unauthorized access to critical data or complete access to all Oracle Banking Corporate Lending accessible data. CVSS 3.0 Base Score 8.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).",Oracle,Banking Corporate Lending,8.1,HIGH,0.0010900000343099236,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-3036,https://securityvulnerability.io/vulnerability/CVE-2018-3036,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Banking Corporate Lending accessible data as well as unauthorized read access to a subset of Oracle Banking Corporate Lending accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Banking Corporate Lending. CVSS 3.0 Base Score 6.3 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L).",Oracle,Banking Corporate Lending,6.3,MEDIUM,0.0007699999841861427,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-3044,https://securityvulnerability.io/vulnerability/CVE-2018-3044,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Banking Corporate Lending accessible data as well as unauthorized read access to a subset of Oracle Banking Corporate Lending accessible data. CVSS 3.0 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N).",Oracle,Banking Corporate Lending,5.4,MEDIUM,0.0008099999977275729,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-3046,https://securityvulnerability.io/vulnerability/CVE-2018-3046,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0, 12.4.0, 12.5.0, 14.0.0 and 14.1.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Banking Corporate Lending accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N).",Oracle,Banking Corporate Lending,5.3,MEDIUM,0.0009599999757483602,false,,false,false,false,,,false,false,,2018-07-18T13:00:00.000Z,0
CVE-2018-2707,https://securityvulnerability.io/vulnerability/CVE-2018-2707,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Banking Corporate Lending accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle Banking Corporate Lending. CVSS 3.0 Base Score 8.1 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H).",Oracle,Banking Corporate Lending,8.1,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2018-01-18T02:00:00.000Z,0
CVE-2018-2706,https://securityvulnerability.io/vulnerability/CVE-2018-2706,,"Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0 and 12.4.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in takeover of Oracle Banking Corporate Lending. CVSS 3.0 Base Score 8.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H).",Oracle,Banking Corporate Lending,8.8,HIGH,0.001829999964684248,false,,false,false,false,,,false,false,,2018-01-18T02:00:00.000Z,0
CVE-2018-2709,https://securityvulnerability.io/vulnerability/CVE-2018-2709,,Vulnerability in the Oracle Banking Corporate Lending component of Oracle Financial Services Applications (subcomponent: Core module). Supported versions that are affected are 12.3.0 and 12.4.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Banking Corporate Lending. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Banking Corporate Lending accessible data. CVSS 3.0 Base Score 5.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N).,Oracle,Banking Corporate Lending,5.3,MEDIUM,0.000859999970998615,false,,false,false,false,,,false,false,,2018-01-18T02:00:00.000Z,0