📦 Financial Services Analytical Applications Infrastructure
by Oracle
🔍 What is Financial Services Analytical Applications Infrastructure?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
An unauthenticated remote code execution vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows attackers to completely compromise affected systems via HTTP. This aff...
This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of Spring Cloud Function. Attackers can craft malicious SpEL expressions in routing function...
Apache Maven follows repository references defined in dependency POM files, allowing malicious actors to redirect builds to compromised repositories. This affects Maven users who build projects with d...
This vulnerability allows unauthenticated attackers with network access via HTTP to cause a denial-of-service (DoS) condition in Oracle Financial Services Analytical Applications Infrastructure. Attac...
This vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows authenticated attackers with low privileges to remotely manipulate or access sensitive financial data via ...
This vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows unauthenticated attackers with network access via HTTP to access sensitive data. It affects Oracle Financi...
This vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows authenticated attackers with low privileges to perform unauthorized data manipulation, read sensitive info...
CVE-2020-36518 is a denial-of-service vulnerability in Jackson Databind where processing deeply nested JSON objects causes a Java StackOverflowError, crashing the application. This affects any Java ap...
CVE-2021-37695 is a cross-site scripting (XSS) vulnerability in CKEditor 4's Fake Objects plugin that allows attackers to inject malicious HTML that can execute JavaScript code in victims' browsers. I...
CVE-2021-32808 is a cross-site scripting (XSS) vulnerability in CKEditor 4 that allows attackers to execute arbitrary JavaScript code by exploiting a flaw in the clipboard Widget plugin when used with...
This vulnerability in Oracle Database's Advanced Networking Option allows attackers to bypass network encryption protections and potentially compromise the component. It affects Oracle Database Server...
This vulnerability allows a locally authenticated malicious user to escalate privileges in Spring Framework WebFlux applications by manipulating temporary storage directories. Attackers can read or mo...
This vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows authenticated attackers with low privileges to access sensitive data via HTTP. Affected organizations usin...