Security Vulnerabilities in Yahoo User Interface (YUI) 3.0
(Doc ID 2332608.1)
Last updated on MARCH 01, 2019
Applies to:Oracle Financial Services Revenue Management and Billing - Version 220.127.116.11.0 and later
Oracle Utilities Framework - Version 18.104.22.168.0 and later
Information in this document applies to any platform.
A vulnerable component(s) (e.g., framework libraries) was identified within the application's code base. An attacker can potentially identify vulnerable components through scanning or manual analysis. Potential exploitation of this component(s) can leverage attacks such as injection, broken access control, XSS, denial of service, etc. The impact can range from minimal to complete host takeover and data compromise.
Affected Hosts/URLs: https://gbs-sit.gsrena.ssmb.com:31759/spl-GBS_RMBP5PKG_clone1/cis.jsp
Copyright (c) 2011, Yahoo! Inc. All rights reserved.
Code licensed under the BSD License:
The vulnerability is affecting all versions prior 3.10.3 (between * and 3.10.3). Additional details can be found at http://www.cvedetails.com/cve/CVE-2013-4940/
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document