Severity
Medium
Analysis Summary
CVE-2023-22117 CVSS:5.4
An unspecified vulnerability in Oracle FLEXCUBE Universal Banking related to the Infrastructure component could allow a remote authenticated attacker to cause low confidentiality impact, low integrity impact, and no availability impact.
CVE-2023-22118 CVSS:6.5
An unspecified vulnerability in Oracle FLEXCUBE Universal Banking related to the Infrastructure component could allow a remote authenticated attacker to cause low confidentiality impact, low integrity impact, and low availability impact.
CVE-2023-22119 CVSS:5.9
An unspecified vulnerability in Oracle FLEXCUBE Universal Banking related to the Infrastructure component could allow a remote authenticated attacker to cause high confidentiality impact, low integrity impact, and low availability impact.
Impact
- Gain Access
Indicators Of Compromise
CVE
- CVE-2023-22117
- CVE-2023-22118
- CVE-2023-22119
Affected Vendors
Oracle
Affected Products
- Oracle FLEXCUBE Universal Banking 12.3.0
- Oracle FLEXCUBE Universal Banking 12.4.0
- Oracle FLEXCUBE Universal Banking 14.0.0
- Oracle FLEXCUBE Universal Banking 14.1.0
- Oracle FLEXCUBE Universal Banking 14.2.0
- Oracle FLEXCUBE Universal Banking 14.3.0
- Oracle FLEXCUBE Universal Banking 14.5.0
- Oracle FLEXCUBE Universal Banking 14.7.0
- Oracle FLEXCUBE Universal Banking 14.6.0
Remediation
Refer to Oracle Critical Patch Update Advisory for patch, upgrade or suggested workaround information.