Vulnerability in the Oracle Financial Services Basel Regulatory Capital Basic component of Oracle Financial Services Applications (subcomponent: Portfolio, Attribution). The supported version that is affected is 8.0.x. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Financial Services Basel Regulatory Capital Basic. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Financial Services Basel Regulatory Capital Basic accessible data as well as unauthorized access to critical data or complete access to all Oracle Financial Services Basel Regulatory Capital Basic accessible data. CVSS 3.0 Base Score 8.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N).
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Oracle |
|
Configuration 1 [-]
|
No data.
References
History
Thu, 03 Oct 2024 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: oracle
Published: 2018-04-19T02:00:00
Updated: 2024-10-03T20:11:32.887Z
Reserved: 2017-12-15T00:00:00
Link: CVE-2018-2855
Vulnrichment
Updated: 2024-08-05T04:29:44.835Z
NVD
Status : Modified
Published: 2018-04-19T02:29:06.647
Modified: 2024-11-21T04:04:37.497
Link: CVE-2018-2855
Redhat
No data.