VDB

GCVE-110-NCSC-2025-25

GCVE-110-NCSC-2025-25
Advisory PublishedCVSS 7.5/10
Vulnetix · Advisory published January 22, 2025
Oracle heeft meerdere kwetsbaarheden verholpen in Financial Services en componenten.

Weaknesses (CWE)

CWE-192Integer Coercion ErrorCWE-426Untrusted Search PathCWE-200Exposure of Sensitive Information to an Unauthorized ActorCWE-502Deserialization of Untrusted DataCWE-532Insertion of Sensitive Information into Log FileCWE-222Truncation of Security-relevant InformationCWE-121Stack-based Buffer OverflowCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-755Improper Handling of Exceptional ConditionsCWE-670Always-Incorrect Control Flow ImplementationCWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-284Improper Access ControlCWE-639Authorization Bypass Through User-Controlled KeyCWE-1321Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')CWE-190Integer Overflow or Wraparound

Risk Scores

CVSS 3.1
7.5/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected Products

VendorProductVersionsPlatforms
oraclefinancial_services_trade-based_anti_money_laundering
oraclefinancial_services_regulatory_reporting_with_agilereporter
oraclefinancial_services_cash_flow_engine
oraclefinancial_services_funds_transfer_pricing
oraclefinancial_services_data_governance_for_us_regulatory_reporting
oraclefinancial_services_lending_and_leasing
oraclefinancial_services_deposit_insurance_calculations_for_liquidity_risk_management
oraclefinancial_services_trade-based_anti_money_laundering_enterprise_edition
oraclefinancial_services_retail_performance_analytics
oraclebanking_corporate_lending_process_management
oraclefinancial_services_analytical_applications_infrastructure
oraclefinancial_services_loan_loss_forecasting_and_provisioning
oraclefinancial_services_regulatory_reporting
oraclefinancial_services_currency_transaction_reporting
oraclebanking_liquidity_management
oraclefinancial_services_compliance_studio
oraclefinancial_services_analytical_applications_reconciliation_framework
oraclebanking_origination
oraclefinancial_services_behavior_detection_platform
oraclefinancial_services_revenue_management_and_billing
oraclefinancial_services_enterprise_case_management
oraclefinancial_services_profitability_management
oraclefinancial_services_asset_liability_management
oraclefinancial_services_basel_regulatory_capital_internal_ratings_based_approach
oraclefinancial_services_institutional_performance_analytics
oraclefinancial_services_crime_and_compliance_management_studio
oraclefinancial_services_liquidity_risk_measurement_and_management
oraclefinancial_services_data_integration_hub
oraclefinancial_services_balance_computation_engine
oraclefinancial_services_enterprise_financial_performance_analytics
oraclefinancial_services_model_management_and_governance
oraclefinancial_services_basel_regulatory_capital_basic
oraclefinancial_services_balance_sheet_planning

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›