CVE-2017-10065

3 documents3 sources
Severity
8.5HIGH
EPSS
0.2%
top 51.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Oracle Retail Point-of-service
Timeline
PublishedOct 19
Latest updateMay 13

Description

Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Security). Supported versions that are affected are 13.2, 13.3, 13.4, 14.0 and 14.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Retail Point-of-Service. While the vulnerability is in Oracle Retail Point-of-Service, attacks may significantly impact additional products. Successful attacks of this vulnerability can result i

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:NExploitability: 3.1 | Impact: 4.7

Affected Packages1 packages

NVDoracle/retail_point-of-service27 versions+26

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-wgrq-7rcg-p2p9: Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Security)2022-05-13
CVEList
CVE-2017-10065: Vulnerability in the Oracle Retail Point-of-Service component of Oracle Retail Applications (subcomponent: Security)2017-10-19