CVE-2017-10211

7 documents5 sources
Severity
6.1MEDIUM
EPSS
0.5%
top 36.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oracle Corporation Hospitality Suite8Oracle Hospitality Suite8
Timeline
PublishedAug 8
Latest updateMar 9

Description

Vulnerability in the Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect). The supported version that is affected is 8.10.x. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Hospitality Suite8. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Hospitality Suite8, attacks may significantly impact additional products. Successful attacks

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages2 packages

NVDoracle/hospitality_suite88.10.0, 8.10.1, 8.10.2+2

Patches

Patch: www.oracle.comPatch: www.oracle.com

🔴Vulnerability Details

3
OSV
yara vulnerabilities2026-03-09
GHSA
GHSA-h82m-6xp6-w2cf: Vulnerability in the Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect)2022-05-13
CVEList
CVE-2017-10211: Vulnerability in the Hospitality Suite8 component of Oracle Hospitality Applications (subcomponent: WebConnect)2017-08-08
CVE-2017-10211 (MEDIUM CVSS 6.1) | Vulnerability in the Hospitality Su | cvebase.io