Misys Information for VU#682704

Misys FusionCapital Opics Plus contains multiple vulnerabilities

Status

Affected

Vendor Statement

Misys has analysed the reported vulnerabilities and determined that they could
relate to a specific older version, but not for all versions, of one of our
applications, with the matter being rectified with a user configuration change
or non-emergency software patch.  In short, we identified that the sql
injection vulnerability is true positive and the other two reported
vulnerabilities are misconfigurations.  For more information, our Opics clients
are being directed to contact their Misys Customer Advocate.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

None

Addendum

There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.