CVE-2016-0436

3 documents3 sources

Severity

1.9LOW

EPSS

0.3%

top 48.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Retail Applications

Timeline

PublishedJan 21

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13.4, 14.0, and 14.1 allows local users to affect confidentiality via vectors related to Mobile POS, a different vulnerability than CVE-2016-0434, CVE-2016-0437, and CVE-2016-0438.

CVSS vector

AV:L/AC:M/C:P/I:N/A:NExploitability: 3.4 | Impact: 2.9

Affected Packages1 packages

▶NVDoracle/retail_applications13.4, 14.0, 14.1+2

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-24gr-994g-fcwf: Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13↗2022-05-17

▶

CVEList

CVE-2016-0436: Unspecified vulnerability in the Oracle Retail Point-of-Service component in Oracle Retail Applications 13↗2016-01-21

▶