CVE-2016-5565

CWE-200 — Information Exposure CWE-284 — Improper Access Control3 documents3 sources

Severity

7.7HIGH

EPSS

0.1%

top 65.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Oracle Hospitality Opera 5 Property Services

Timeline

PublishedOct 25

Latest updateMay 17

Description

Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Hospitality Applications 5.4.0.0 through 5.4.3.0, 5.5.0.0, and 5.5.1.0 allows remote authenticated users to affect confidentiality via vectors related to OPERA.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 3.1 | Impact: 4.0

Affected Packages1 packages

▶NVDoracle/hospitality_opera_5_property_services6 versions+5

Patches

Patch: www.oracle.com ↗Patch: www.oracle.com ↗

🔴Vulnerability Details

GHSA

GHSA-8g4h-9hf9-cj97: Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Hospitality Applications 5↗2022-05-17

▶

CVEList

CVE-2016-5565: Unspecified vulnerability in the Oracle Hospitality OPERA 5 Property Services component in Oracle Hospitality Applications 5↗2016-10-25

▶