CVE-2017-10197

CWE-200Information Exposure5 documents5 sources
Severity
4.6MEDIUM
EPSS
0.1%
top 69.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Corporation Hospitality Opera 5 Property ServicesOracle Hospitality Opera 5 Property Services
Timeline
PublishedOct 19
Latest updateMay 17

Description

Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: Folios). The supported version that is affected is 5.4.2.x through 5.5.1.x. Easily exploitable vulnerability allows physical access to compromise Oracle Hospitality OPERA 5 Property Services. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle Hospitality OPERA 5 Property Services accessible data. CV

CVSS vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages2 packages

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

2
GHSA
GHSA-4836-47vq-jwrg: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: Folios)2022-05-17
CVEList
CVE-2017-10197: Vulnerability in the Oracle Hospitality OPERA 5 Property Services component of Oracle Hospitality Applications (subcomponent: Folios)2017-10-19

📋Vendor Advisories

1
Red Hat
Mozilla: Vulnerabilities in libevent library (MFSA 2017-11, MFSA 2017-12)2017-04-19

💬Community

1
Bugzilla
CVE-2016-10197 libevent: Out-of-bounds read in search_make_new()2017-02-02
CVE-2017-10197 (MEDIUM CVSS 4.6) | Vulnerability in the Oracle Hospita | cvebase.io